Financial Sector
Connected Smart Lighting
Medical Systems
Manufacturing
Logistic
Transportation
Oil & Gas Facilities
Electricity, Smart Grid
Power Plants
Sample of Our Projects
FINANCE
The Project:
Risk Assessments - ATM and SWIFT Infrastructure.
(Brazil)
Electronic Fund Transfer (EFT) Systems
Financial systems are at a high level of risk in terms of financial damages when malicious actions take advantage of technological or operational exposures. With financial systems, where high security is crucial, a missing security policy or inappropriate security planning and technology deployment is crucial to the Information security mechanism aim to enable secure eBanking services and electronic messages transfer toward the internal or external electronic infrastructures.
Working closely with the bank's executive leadership in Brazil, we provided a wide range of services including performing end-to-end Security Risk Assessments, Pen-Testing and Attack Simulations across the entire SWIFT and ATM infrastructure to identify weaknesses in security controls. In addition, we assist our clients to comply with SWIFT CSPF security requirements and yearly attestation.
SAFE CITY, SMART LIGHTING
The Project:
Product Security, Risk Assessment, Pen-Testing
System Security Architecture Review
(Netherlands, USA, Germany)
Connected Systems. IoT
Smart & Safe City systems are serving as a critical component in city infrastructures and plan to provide extended capabilities such as public safety monitoring and traffic management. In the case of cyber-attack and exploitation of vulnerabilities, it could potentially impact systems functionality and loss of service availability. Due to these types of services and customers (municipalities), Smart & Safe city systems are potential to be targeted also by Cyber Terrorists and Nation-state threat actors.
From ‘National Security’ and ‘Crisis Management’ aspects where ‘system availability’ is critical, those systems will be considered in many countries as a critical systems under the definition of ‘National Critical Infrastructure.
With Signify, previously Philips Lighting, we are working closely for a few years, assisting the company to evaluate some of their leading products and connected services including indoor smart home products and outdoor Smart Street lighting, Tunnel and underpass smart lighting systems, Stadiums lighting systems, Cloud Service Applications, IoT Hub Infrastructure and more.
MEDICAL
Medical Systems & eHealth Services
The Project:
Medical eHealth Services Risk Assessments,
Architecture Review, Medical Applications Pen-Testing
(Netherlands, USA)
The increasing connectivity of medical devices to computer networks and the convergence of technologies has exposed vulnerable devices, software applications, and eHealth infrastructure services to various types of cyberattacks that can potentially impact the system's functionality and loss of medical service availability, which in most cases are critical services. The need to protect patient Electronic Health Records (EHR) or electronic medical records (EMR) from cyber-attack, is a core mandatory requirement that organizations need to comply with under HIPA regulation. However, the potential impact on clinical care and patient safety is raising concerns for healthcare organizations, regulators, and medical device manufacturers alike.
Bringing our experience with evaluating High Availability Systems and Critical Infrastructure we assist Philip's leadership to evaluate their IT security posture by performing several Security Risk Assessments on the corporate Enterprise IT, the Product Security lifecycle, Medical E-Services portfolio, RnD, and DevOps infrastructure.
NATIONAL CRITICAL INFRASTRACTURE
The Project:
Oil & Gas OT Infrastructure and SCADA/ICS Security.
Attack Surface Exposure, Risk Assessment
(UAE)
Supervisory & Control Systems
Remote Industrial Control Systems (ICS) in the delivery of essential services/products such as electricity, natural gas, water, waste treatment and transportation, this makes them an integral and essential part of a nation’s critical infrastructure. The integration of such critical systems with technologies means that a new threat is cyber or electronic attacks that can come from a host of sources ranging from recreational hackers to terrorists, disgruntled employees, or contractors.
For several years we worked closely with the Oil & Gas industry supporting the leading security managers to identify security weaknesses and implement security controls. Our services included strategic and technology advisory, SCADA/ ICS Security Assessment, OT Penetration Testing, and IoT security solutions.
SUPPLY CHAIN LOGISTIC
The Project:
IT & OT Attack Surface Exposure, Risk Assessment
and Security Architecture Review.
(Italy)
IT & Logistic OT Infrastructure
As organizations and their partners are increasingly becoming interconnected, cyber security risks can endanger all parties involved. And even when your business is protected by sophisticated security tools, you may never be certain your suppliers also have the same methods of protection in place. This is why should never ignore any potential supply chain cyber security risks when it comes to protecting your company and sensitive information.
MARITIME SECURITY
The Project:
Shipping and Port Cyber Security, Consulting Services. (Greece)
IT & Maritime OT Infrastructure
The maritime industry is increasingly dependent on complex critical communication and information systems that in recent years is shifting into the digital age, which makes this industry one of the most susceptible to cybersecurity attacks.
Cyber threats and cyber-attacks are becoming more frequent and more sophisticated every day. As these attacks have been happening more frequently with serious consequences, cybersecurity has become a primary focus for the maritime industry.
Eexperiance With Global Organizations
