Security Reviews and Audits
| Penetration studies for all platforms. Here are some slides from a presentation given recently at the NY RACF Users Group about penetration experiences in a RACF shop. |
After we had been doing penetration studies for a year or two, the New York Times ran this article about our work. Although we've developed lots of new approaches and ideas since then, and although computing platforms have evolved tremendously, the main points in this piece are still valid.
| Security reviews for z/OS and its predecessors, Windows/NT/2K/XP, all UNIX variants, web application architectures, network topologies, firewalls, etc. |
| Financial audit support for these platforms - for internal and external auditors. Application reviews, standards compliance reviews, etc. |