Select Page

DefenseCraft

Cybersecurity

Our Philosophy

Cybersecurity is not a product that can be purchased, nor is it an IT specific function. It’s a continuous organization wide process of education and technological improvement.

read more

Our Mission

To develop an organization wide security aware mindset melded with carefully crafted policy and robust security controls.

read more

Professional Services

read more

Design

  • Governance Frameworks
  • Network Architecture
  • Security Controls
  • Policy Development
U

Testing

  • Vulnerability Assessment
  • Penetration Testing
  • Compliance Audits
  • Social Engineering
s

Risk Management

  • Risk Assessment
  • Compliance Strategy
  • Contingency Planning
  • Supply Chain Protection

Training

  • Security Awareness Training
  • Social Engineering Defense

Superior security strategies from leading-edge research

Cyber criminals are giving executives and IT departments sleepless nights. And the worries are increasing with frequent news of data breaches and ransomware. We want to help you fortify your network and educate your staff.

We do more than just harden and test your network and communication systems. We assist your organization in developing an integrated security posture that is built around a knowledgeable workforce.

Website Risks

by | May 25, 2018 | Basics, Blog | 0 Comments

Websites are problematic for cybersecurity because they’ve grown from a simple information page to interactive scripted content management systems that act as the front end for an organization’s database. It’s essentially a public facing application that’s allowed to...
Read More

Business Need for Investments in Cybersecurity

by | March 5, 2015 | Blog | 0 Comments

Introduction   In February 2017, Memorial Healthcare System (MHS) in southern Florida was assessed a $5.5 million penalty by the US Office of Civil Rights for HIPAA (Health Insurance Portability and Accountability Act) violations. The penalty was for “failure to...
Read More

Application Lifecycle Management in High Security Systems

by | November 9, 2015 | Blog | 0 Comments

Overview   Security of software products during both development and operations is vital and can effects national security, therefore the security control baseline selected will be ‘high-impact” criteria in NIST 800-53 based on the criteria in NIST 800-60 stating...
Read More

The Iron Triangle: Cost, Quality, and Time

by | January 5, 2018 | Basics, Blog | 0 Comments

There’s a humorous sign frequently seen in various kinds of offices and workshops around North America. It says simply, “Fast, Good, or Cheap: Choose Two!” It’s a simple but useful model demonstrating the tradeoff between the constraints of quality, time, and cost. In...
Read More

Identity Governance & Administration (IGA) Software

by | June 11, 2015 | Blog | 0 Comments

    Introduction   One of the foundational components of the security architecture is the management of identity credentials and authorization to interact with data. Currently the method is a manual paper-based system routed between the HR department...
Read More

Cybersecurity and NAICS Codes

by | April 6, 2016 | Blog | 0 Comments

Overview The cybersecurity industry is an aggregation of products and services to protect computer networks from data confidentiality, integrity and availability. It’s vital to the health and continued functioning of the Internet and all connected organizations....
Read More

DefenseCraft

Cyberspace is dangerous. We can help.

[zc4wp_sa3]

“It takes 20 years to build a reputation and few minutes of cyber-incident to ruin it.”

Stephane Nappo, Global Chief Information Security Officer at Société Générale International Banking