|
|
 |
|
Information warfare
is the offensive and defensive use of information and information
systems to deny, exploit, corrupt, or destroy an adversary’s
information, information-based processes, information systems, and
computer-based networks, while protecting one’s own. Such actions
are designed to achieve advantages over military or business
adversaries.
|
|
The development that has taken place in the ICT world has increased
the exposure of information and resources control systems to threats
of theft and destructive activities from irresponsible individuals
and nations. While the use of ICT is necessary, protection of these
systems is crucial. Development of system protective measures is to
be concurrent with the introduction of ICT applications to ensure
effectiveness of systems being installed.
|
|
We offer the following services : |
|
Security Posture
Assessment
Security
Posture Assessment (SPA) is an in-depth inspection and review
of a organization's current ICT network and systems security. It
identifies weaknesses and vulnerabilities that put the organization
at risk. Then, it provides specific recommendations to enhance
security against internal and external threats. The various features
of an SPA comprise of :
|
• |
Organization
security review |
|
• |
Security
policy review |
|
• |
Network
architecture review and security
assessment
|
|
• |
Intrusion/penetration
testing
|
|
• |
Physical
security review
|
|
• |
Systems/hosts
review and security assessment |
|
• |
Virus
detection and assessment
|
|
• |
Data
analysis, report preparation and presentation
|
|
|
Consultancy on
information warfare
We
provide services to help clients understand, guide and recommend
measures to be taken to defend an organization. The consultancy may
cover following areas such as :
|
• |
Understanding
what is information warfare and the different types of warfare. |
|
• |
Understanding
what others are doing and the potential threats. |
|
• |
Setting
up an IW organization and recommend program to build expertise. |
|
• |
Identifying
the various knowledge and expertise required. |
|
• |
Identify
the types of operations required for an IW organization. |
|
|
Information
Security Implementation
By having expertise in the various areas of
information and communication security, we strive to put
together an effective security solution. The solutions may
include the following :
|
• |
security
products integration. |
|
• |
customization
of applications with security features. |
|
• |
complete
application security architecture design. |
|
|
Training
Being the subject matter
professional, we would like to share the knowledge and know-how
with the relevant parties through training programs. Broadly,
the training that we provide includes the following areas :
|
• |
Information
Warfare
|
|
• |
Security
Training Program |
|
• |
Security
Awareness Program |
|
Security Policy
The framework within which an organization
establishes needed levels of information security to achieve the
desired confidentiality goals. A policy is a statement of
information values, protection responsibilities, and
organization commitment for a system. Each organization would
require its own security policy, as the nature of business and
its execution differ from one another.
We provide the services of helping organizations to come up with
their own security policy. The policy considers the nature of
their business, the risks of information ill use and the
practicality of policy. |
Business
Continuity Management
According to the Business Continuity Institute (BCI), business
continuity management is a holistic management process that
identifies potential impacts that threaten an organization and
provides a framework for building resilience with the capability
for an effective response that safeguards the interests of its
key stakeholders, reputation, brand and value creating
activities.
Below are the areas that we would be able to be of assistance :
Business Impact and Risk Analysis
The first step in a sensible business continuity
process is to consider the potential impacts of each type of
disaster or event. This is critical - how can you properly plan
for a disaster if you have little idea of the likely impacts on
your business/organization of the different scenarios?
Having determined the impacts, it is now equally important to
consider the magnitude of the risks, which could result in these
impacts. Again, this is a critical activity - it will determine
which scenarios are most likely to occur and which should
attract most attention during the planning process
Disaster Recovery Plan
A sound disaster recovery / business
continuity plan is essential to protect the well being of an
organization. This cannot really be over emphasized... yet many
enterprises still side step the issue or hold plans, which are
clearly out of date or inadequate.
Part of
the reason for this is the complexity of the task. This is not
helped by some vendors selling planning products, which are
extremely difficult to master. |
|
Electronic
Warfare (EW)
Definition of Electronic Warfare : military
actions including
|
• |
electronic attack--the use of either electromagnetic or
directed energy to degrade, neutralize, or destroy an
enemy's combat capability; |
|
• |
electronic protection--those actions taken to protect
personnel, facilities, and equipment from any effects of
friendly or enemy employment of electronic warfare |
|
• |
electronic warfare support--those actions tasked by an
operational commander to search for, intercept,
identify, and locate sources of radiated electromagnetic
energy for the purpose of immediate threat recognition. |
Through our vast
experience, expertise and strategic partnership with world
leading EW system providers, we are capable of undertaking and
delivering successfully wide ranges of tactical and strategic
land, sea and airborne EW systems and solutions. |
|
