Security-Assessment-Services_Banner2
To obtain in-depth knowledge of your security, risk posture and ensuring compliance with laws & regulations, ACinfotec are delighted to present our security assessment team and our security assessment methodology to address your objectives.

Advance, Accurate and Effective Assessment

Penetration Testing must be conducted, at least on annual basis, to achieve compliance with many regulations and standards; including, the Payment Card Industry Data Security Standard (PCI DSS) and ISO 27001 standard for information security management. In addition,  Penetration Testing detects weaknesses in a system or network that could be possibly compromised and allows your IT team or security officer to rectify the weaknesses before the adversary exploit them.

ACinfotec provides a wide range of security assessment services designed to meet your security objectives.

Penetration Test

  • External Network Penetration Testing
  • Internal Network Penetration Testing
  • Application Penetration Testing
  • Mobile Application Penetration Testing
  • Wireless Penetration Testing

Security Assessment

  • ICS/SCADA
  • Physical Security
  • Vulnerability Assessment
  • Social Engineering
  • Network Architecture

Incident Handling

  • Malware Analysis
  • Intrusion Analysis
  • Computer Forensics

Training

  • Tailor-made topics
assessment_cert-300x166

You built, but we break in a professional manner.

Elite Team

ACinfotec’s Security Assessment Team comprises of high-skilled ethical hackers, security specialists and experienced security architects equipped with qualifications from leading organizations such as EC-Council, SANS GIAC, ISC2, and eLearnSecurity. Our team is constantly researching to stay at the forefront of penetration testing and security assessment technology as well as modern threat trends and zero-day attacks.

Best Practice Oriented

Our methodology is based on well-known standardise security testing methodologies with the combination of NIST SP800-115, OSSTMM, PTES and Adaptive Penetration Testing. With application security, our tests cover OWASP TOP10, CWE/SANS Top 25 Most dangerous software errors along with business logic flaws.

In-house Craftmanship

Apart from following standard testing methodologies, our team also use proprietary & sophisticated technique, scripts and tools to simulate real-world attack scenarios.

Focus on Cost-Effective Protection

Identifying weaknesses in client system is not our goal. The ultimate objective of our VA/Pentest services is to ensure that client can enhance their security controls by utilizing cost-effective measures.

Tailor-made Testing Scenario

Choose your desired scenarios and let our expert test them for you. Ranging from the combination of external pentest + internal segregation of duties test to APT proof of concepts + phishing tests, the possible scenarios are unlimited.

Subscription Services

Subscription services are suitable for organization that needs repeatedly assessment or their security risks in which we will attack selected systems periodically (monthly or quarterly) and the attack report will be sent to client at the end of each attack.

 

Contact us

โทร. 02-670-8980-3 ต่อ 405 หรือ 406
E-mail: [email protected] หรือ [email protected]