Our services are used by many major names in the banking and finance, insurance, healthcare, retail, service provider sectors as well as resources, utilities and telecommunications. In the public arena we conduct business with local, state and federal governments.

Our consultants are industry certified information security specialists and are recognised by their clients and peers for their professionalism, experience and expertise.

We have been honoured by a range of awards – public acknowledgement of our credentials and the diversity of our services. These awards include ranking in the BRW’s Fast 100, in 2009 and 2010, which recognises Australia’s most innovative smart and fast growing small and medium size businesses. Also in 2010 Sense of Security received the iAwards NSW Merit Award in the security application category. The iAwards is run by the Australian Information Industry Association (AIIA).

Our approach to developing information security and risk management strategies
Sense of Security provides end-to-end consulting services which include industry aligned governance, risk and compliance services, such as ISO 27001/2 (Security Management), ISO 31000 (Risk Management) reviews and roadmaps.

We develop information security strategies for our clients which typically start with a risk assessment to understand where key information assets are then design management practices to ensure that those assets are secured. Results from the risk assessment may indicate that the information security architecture needs to redesigned or further developed.

Furthermore, our firm offers a full range of comprehensive technical testing and audit services. We assess for the presence of vulnerabilities and risk across all layers of the technology spectrum; this includes network, host, and application security. Our projects are delivered with reference to industry leading standards, in combination with our own in-house developed processes and assessment methodologies.

Our Research
Sense of Security has invested in a research laboratory where we conduct detailed vulnerability analysis on commonplace and bleeding edge ICT systems and technologies; this includes the assessment of security related issues on a variety of technologies used in today’s SCADA environments.

Our research further develops our project assessment methodologies. This enables us to consistently and effi ciently deliver industry-leading services to our clients; thereby creating a unique and sustainable value proposition.

Sense of Security Services: Governance, Risk and Compliance

• ISO 27001 - Security Management
• ISO 31000 - Risk Management
• Data Classification Assessment - PSM
• Security Control Framework - ISM
• Payment Card Industry Data

Security Standard Security Assessment and Assurance

• Network and Application Penetration Testing
• Application Source Code Audit
• SCADA Security Assessment
• Operating System Security
• Wireless and Mobile Security
• Citrix and Virtualisation Platform Security

Strategy and Architecture

• Development of Security Strategy and Roadmap
• Information Security Policy & Procedure
• Information Security Architecture
• Threat and Vulnerability Management
• Access Control Management

Deployment and Ongoing Management

• Perimeter Security
• Intrusion Detection and Prevention
• Strong Authentication
• Database Security
• Encryption
• Wireless Security
• Event and Log Management