IT SECURITY TESTING

The Security Testing Services are delivered by professionally accredited Meritec IT security specialists using Industry recognised skills, methodologies and comprehensive toolsets to ‘attack’ (by prior arrangement with the client) an organisations’ networks and systems in an attempt to gain access.

The Services confirm the effectiveness of security measures that may already be in place, or alternatively identifies current and potential areas of weakness. The testing highlights and assesses the risks to IT security, and provides recommended measures to mitigate those risks. It provides evidence that the organisations’ networks and systems have been independently scrutinised by qualified practitioners.

The services are offered both as one off assignments and as on-going services. It is normally recommended that repeat testing is undertaken at least every six months or if any major alterations are implemented to systems or infrastructure in which case it is good practice to have a test done immediately before or immediately following go-live.

Different levels of testing and scope are offered depending on client needs, these are:-

Network Security Testing (Level 1) – this will be confined to External Testing of the network access and will not seek to exploit identified vulnerabilities.

Network Security Testing (Level 2) – this will provide full Penetration Testing to include exploitation of vulnerabilities and, within the scope defined by the Security Test Agreement may include (in addition to external testing of the network):