.

Security Consulting Services - What are the services we can offer?

<<

morpheus063

User avatar

Sr. Member
Sr. Member

Posts: 393

Joined: Sun Jun 25, 2006 10:08 am

Location: Cochin - India

Post Tue Feb 20, 2007 9:50 am

Security Consulting Services - What are the services we can offer?

Hi Fellow Ethical Hackers,

After attaining some certifications and courses on Info Sec, I was asked by my boss about starting a security consulting division for our firm. So, the purpose of this post is to discuss the various services that a security consulting can offer like, pen testing, security awareness training etc. I would like request the security professionals of this web portal to guide us on this matter.

Also, is there any legal aspect that needs to be taken care before getting into security consulting?

Any guidance on preparing a Business Plan for the same would be of great help.

Regards and best wishes,

The Morpheus
Manu Zacharia
MVP (Enterprise Security), ISLA-2010 (ISC)², C|EH, C|HFI, CCNA, MCP,
Certified ISO 27001:2005 Lead Auditor

[b]There are 3 roads to spoil; women, gambling & hacking. The most pleasant with women, the quickest with gambling, but the surest is hacking - c0c0n
<<

Kev

Post Tue Feb 20, 2007 11:30 am

Re: Security Consulting Services - What are the services we can offer?

Congratulations, it can be hard sometime to convince others on the need for security. It can be a little scary for some companies because they feel like they are exposing themselves to an outsider. If you can get beyond that ,then you are ahead. Yes, there are legal things to consider and its important to protect yourself.  Have a very clear document that covers yourself not just on any vulnerability you reveal, but also on any hardware that might go bad during your pen test. Its weird but if any computers  fail while you are doing your pen test, they will try and hold you responsible.
<<

boney

User avatar

Jr. Member
Jr. Member

Posts: 61

Joined: Mon Jan 15, 2007 8:46 am

Location: India

Post Tue Feb 20, 2007 12:06 pm

Re: Security Consulting Services - What are the services we can offer?

Well you can also get into writing policies for the companies.
Policies like Network Security Policy, Physical Security Policy, Email policy, Storage Policy, Disaster Recovery Policy, Backup Policy and things like these.
If you want any help regarding how to create these Policies, let me know, as I have some specimen of these policies. Maybbe it helps !

And above all, as Kev states, consider all the legal issues and be armed with the proper tools and techniques while doing the pen tests.

Prepare some slides as to give a picture of your cunsulting service which includes the things you'll do for the company. Inform te clients that you'll be sending the audits on regular basis ( or whatever time interval you have decided) with rigorous analysis.

All the best !
C|EH

All my life I wanted a computer...
Now I want my life back !
<<

morpheus063

User avatar

Sr. Member
Sr. Member

Posts: 393

Joined: Sun Jun 25, 2006 10:08 am

Location: Cochin - India

Post Tue Feb 20, 2007 12:45 pm

Re: Security Consulting Services - What are the services we can offer?

Thanks for the guidance Kev and Boney.  :)

Boney - Can I have the specimen copies. I have send a Personal Message to you containing my email ID's.

Thanks in advance
Manu Zacharia
MVP (Enterprise Security), ISLA-2010 (ISC)², C|EH, C|HFI, CCNA, MCP,
Certified ISO 27001:2005 Lead Auditor

[b]There are 3 roads to spoil; women, gambling & hacking. The most pleasant with women, the quickest with gambling, but the surest is hacking - c0c0n
<<

Cutaway

User avatar

Jr. Member
Jr. Member

Posts: 96

Joined: Mon Nov 20, 2006 5:02 pm

Post Thu Feb 22, 2007 12:16 am

Re: Security Consulting Services - What are the services we can offer?

Here is a great resource for Policies http://www.dir.state.tx.us/security/policies/templates.htm

Although these are developed to help the State of Texas Agencies and Universities spin up a security program they are generic enough to use anywhere.

Good Luck,
Cutaway
Go forth and do good things,
Cutaway
<<

venom77

User avatar

Hero Member
Hero Member

Posts: 1905

Joined: Mon Dec 11, 2006 3:23 pm

Post Thu Feb 22, 2007 8:23 am

Re: Security Consulting Services - What are the services we can offer?

Another good policy link: SANS Security Policies

Return to Career Central

Who is online

Users browsing this forum: No registered users and 1 guest

cron
.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software