IT Audit & Forensics
Commissionaires BC and our technology partners provide computer forensic investigation and examination services. These services cover all areas of computer fraud, computer misuse, Internet/email abuse, pornography and hacking among many others. By utilizing the most advanced computer forensics software available on the market, our EnCASE certified forensic examiner (EnCE) professionals are able to conduct court admissible evidence gathering on any storage media such as server hard drives, computer hard drives, laptop hard drives, storage devices (tape backups, RAID, thumb drives, memory sticks, memory cards [e.g., cards from digital cameras and mp3 players).
When performing forensic analysis on clients’ systems, we are able to recover data that normally would not be seen on the system. We are able to recover deleted files, virtual memory, slack space, FDisk or formatted media. Additionally we can perform forensic analysis on virtually ANY operating system on the market from HP-UX to Windows FAT/NTFS. The process of acquiring an individual’s drive is completely non-invasive, and when an acquisition is made, the original electronic evidence is preserved and unchanged.
The evidence that is gathered by us during a forensic investigation is admissible in a court of law in Canada, USA and Internationally.
This gives you assurance that should an incident ever find itself before a judge, the evidence you present on your behalf will be court admissible and authoritative. Our EnCASE certified forensic examiner can offer Litigation Support and be used for Expert Testimony pertaining to the investigation and examination.
IT Security Audits / Vulnerability Assessment Services
Our vulnerability scanning services provide you with an economical, yet comprehensive security review of your network perimeter or internal network. Our Certified Information Systems Security Professionals (CISSP) look for critical vulnerabilities and gaps in network security practices. Our thorough process includes weeding out false positives, providing strategic advice to help you correct root issues, and providing prioritized recommendations to ensure critical holes are closed first.
We employ a unique combination of robust vulnerability testing methods, a portfolio of vendor tools and proprietary techniques. Our security expert prioritizes the findings and makes specific recommendations for fixing or mitigating vulnerabilities. Due to years of experience and training our security experts are able to pinpoint the root cause of vulnerabilities, why they got there in the first place and develop solutions to ensure critical vulnerabilities don’t recur.
Our professional assessment services include:
Internal & External Vulnerability Assessments – We identify network and system vulnerabilities across the entire network or within a specific network segment. We work with each client and customize our approach to maximize results and minimize cost.
Penetration Testing – In addition to providing a census of vulnerability, our security expert can engage in penetration exercises to determine whether critical corporate assets are at risk anywhere in the world.
Reporting – reports can be generated with varying levels of detail. Depending on your needs, we can generate reports that will:
- provide a global view of the security of your network;
- identify trends or changes in your network security by comparing scan results over a period of time;
- determine if your network is more or less secure from previous scans;
- generate graphs displaying the total vulnerabilities detected by severity and/or severity over time;
- sort and filter data from your scan report.