episec about episec services offered pricing of services press releases contact us people: public employee pages security: methods and methodologies learning: episec custom courses site map episec services
episec  
link: navigation menu



Episec Services


Following is a list of services episec offers. Like any good restaurant, we offer items that may not be on the menu. If you don't see what you're looking for, feel free to contact us and ask about it. Go ahead; we're friendly.

  • Network Auditing: Auditing a network is the first step in securing it. In contrast to penetration testing, we prefer to focus on what could possibly go wrong as opposed to what already has. We will still offer penetration testing if specifically requested, but in comparison it is a waste of the client's time and money.

  • Firewall Design and/or Implementation, tailored specifically for a client's network. We offer alternate designs and explain the difference in cost and manageability for each.

  • Local and remote host security: Insecure services allow for attacks from potential network or internet intruders. Likewise, insecure files and directories allow for attacks from malicious local users. We secure or disable the services, files and directories on each host to protect against attacks from any angle. We also add limits and traffic control protection to keep Denial of Service (DoS) attacks from taking down the client's servers.

  • We discuss the details with the client, giving examples, analogies and diagrams as necessary for the client to fully understand the situation. The client has the right to be thoroughly involved in the decision-making process, and thus must be educated enough so that he feels confident making any decision he needs. We are happy to provide that education.

  • We audit code for server-side programming, including (but not limited to) custom services written in C or PERL, CGI programming and PHP scripting.

  • Interoperation: If the client prefers, we are happy to work with the existing system security or administration team to correct security problems. This can cut down on project completion time, and has the added benefit of teaching current employees how to use and care for new security measures in a hands-on fashion.

  • Employee education: We cannot stress enough the importance of employee savvy when it comes to security. You can have us secure your systems once per month if you desire, but if a misguided employee insecurely installs a vulnerable public service, your systems will be sitting ducks for however long it stays active. To us, the education of your employees is vital... which is why we'll train your administrators for free after securing your network. We also offer separate education packages for as many employees as you need, however long you require.

  • Ongoing support: We at Episec love nothing more than to see that the systems we secure stay secure. We offer affordable ongoing support in a number of packages. We'll update you with everything you need to know regarding new vulnerabilities in services you may be running or new security-related files on your system. Additionally, we'll run regular checks on your systems to ensure nothing has changed, and if it has, we'll ensure that those changes are authorized and implemented securely.

  • Service Support: If you're already running open-source programs that you require, or if you'd rather set them up yourself, we can still offer third-party support to suit your needs. Check our service support page for more information.

  • We are, to the best of our knowledge, the only company in the network security field to offer a guarantee. If anyone can break into a system through a service that we have secured, we offer a full refund of the cost incurred retaining our services. This guarantee stands even if the intruder is a consultant hired specifically for that task.


And of course, if you have any questions about any of this, please contact us.