Select Page

DefenseCraft

Cybersecurity

Our Philosophy

Cybersecurity is not a product that can be purchased, nor is it an IT specific function. It’s a continuous organization wide process of education and technological improvement.

read more

Our Mission

To develop an organization wide security aware mindset melded with carefully crafted policy and robust security controls.

read more

Professional Services

read more

Design

  • Governance Frameworks
  • Network Architecture
  • Security Controls
  • Policy Development
U

Testing

  • Vulnerability Assessment
  • Penetration Testing
  • Compliance Audits
  • Social Engineering
s

Risk Management

  • Risk Assessment
  • Compliance Strategy
  • Contingency Planning
  • Supply Chain Protection

Training

  • Security Awareness Training
  • Social Engineering Defense

Superior security strategies from leading-edge research

Cyber criminals are giving executives and IT departments sleepless nights. And the worries are increasing with frequent news of data breaches and ransomware. We want to help you fortify your network and educate your staff.

We do more than just harden and test your network and communication systems. We assist your organization in developing an integrated security posture that is built around a knowledgeable workforce.

Risks of Counterfeit Hardware or Embedded Malware

by | August 8, 2018 | Basics, Blog | 0 Comments

Network and security hardware undergoes long and expensive design and development processes to remove vulnerabilities and flaws. Rogue hardware manufacturers in Asia are producing reverse engineered clones that mimic functioning and appearance of the devices for a...
Read More

Acquisition & Procurement Risk in the Cybersecurity Industry

by | April 3, 2018 | Blog | 0 Comments

Overview Information security for an organization is an ongoing process of users interacting with technology through a combination of policies, procedures, software and hardware to provide data confidentiality, integrity, and availability. All users are part of the...
Read More

The Importance of Governance Frameworks in Information Security

by | February 15, 2017 | Blog | 0 Comments

On May 7, 2014 Chinese hackers gained access to the United States Office of Personnel Management (OPM) but the breach wasn’t discovered until April 15, 2015, and the breach wasn’t announced until June 2015. The attackers had access to the OPM servers for almost a full...
Read More

The Iron Triangle: Cost, Quality, and Time

by | January 5, 2018 | Basics, Blog | 0 Comments

There’s a humorous sign frequently seen in various kinds of offices and workshops around North America. It says simply, “Fast, Good, or Cheap: Choose Two!” It’s a simple but useful model demonstrating the tradeoff between the constraints of quality, time, and cost. In...
Read More

Ethical Conflicts in Cybersecurity

by | July 22, 2018 | Basics, Blog | 0 Comments

Ethical issues arise in the cybersecurity field when competing moral interests conflict. The following are examples of such conflicts.   A business has the right and need for access to the data stored on its networks and this can conflict directly with the...
Read More

Governance Frameworks in Cybersecurity Acquisition

by | May 19, 2017 | Blog | 0 Comments

A complete and mature organizational cybersecurity infrastructure requires the use of a governance framework such as COBIT 4.1 aligned with a security control framework such as ISO/IEC 27002:2005. This provides a process to manage the complex security control...
Read More

DefenseCraft

Cyberspace is dangerous. We can help.

[zc4wp_sa3]

“It takes 20 years to build a reputation and few minutes of cyber-incident to ruin it.”

Stephane Nappo, Global Chief Information Security Officer at Société Générale International Banking