Intelligence Driven Security Services for the New Millennium

Enterprise Mobile Security

SecurBay / Enterprise Mobile Security
EM-1: Mobile Security Framework
Ref. Code: EM-1
Objective To prepare the framework for securing Mobile Devices, Applications and Sensitive Data that is stored on Mobile Devices
What we do Phase 1

  • Identify Mobile Security Needs
  • Perform Gap Assessment
  • Prepare Enterprise Mobile Security Roadmap
  • Recommend Action Plan

Phase 2

  • Mobile Security Strategy
  • Preparation of Policies and Procedures
  • Preparation of Mobile Security Guidelines
  • Preparation of Mobile Application Security Guidelines

Phase 3

  • Mobile Security Trainings
  • Mobile Application Security Testing
  • Mobile Security Audit
  • Mobile Apps Monitoring
Requirements
  • Provide the Business Objectives for implementing Mobility Security Solutions
  • Help to understand the Legal and Compliance Issues related to Mobility
What you  get Security Assessment Reports:

  • Gap Analysis Report
  • Mobile Security Framework
  • Mobile Security Roadmap with action points
Suggested frequency
  •  As per the requirement.
EM-2: Mobile Application Security Testing
Ref. Code: EM-2
Objective To identify the security issues related to storage and transmission of sensitive data and flaws in business logic of Mobile Applications
What we do
  • Pre-Assessment Analysis
  • Information Gathering
  • Identifying OWASP Top-10 vulnerabilities
  • Identifying other critical Mobile application vulnerabilities
  • Identifying underlying Mobile OS related vulnerabilities
  • Mitigation Strategies to fix the identified issues
  • Report Generation
Requirements
  • Sign a Non-Disclosure Agreement (NDA)
  • Provide the Mobile App and Test-user Accounts
What you get Security Assessment Reports:

  • Executive (for executive managers) and Technical (for IT administrators) reports that include findings and recommendations
  • Follow-up activities to assist in implementing the recommendations and mitigating the risks
Suggested frequency
  • Quarterly
EM-3: Mobile Application Security Code Review
Ref. Code: EM-3
Objective To identify syntax errors, configuration issues and flaws in the business logic that occurs in the application codes, which may result in a compromised application.
What we do
  • Pre-Assessment Analysis
  • Information Gathering
  • Understanding application functionality and architecture.
  • Reviewing application documentation
  • Scan the application source code based on the security checkpoints
  • Identify the potential security vulnerabilities
  • Mitigation Strategies
  • Report Generation
Requirements
  • Signing Non-Disclosure Agreement (NDA)
  • Provide application documentation
  • Provide application source code
What you get Security Assessment Reports:

  • Executive (for executive managers) and Technical (for IT administrators) reports that include findings and recommendations
  • Follow-up activities to assist in implementing the recommendations and mitigating the risks
Suggested frequency
  • Half Yearly
  • Before the deployment of a new application

 

Leave a reply

Your email address will not be published. Required fields are marked *

CAPTCHA

*

Back to Top

Translate:

Translate »