IAMUS provides services in all five subcategories under the HACS SIN:
The High Value Asset Assessments category includes three services: Risk and Vulnerability Assessment (RVA), Security Architecture Review (SAR), and Systems Security Engineering (SSE). RVA evaluates threats, deviations, and risk levels and recommends mitigation countermeasures. SAR assesses HVA security posture and analyzes how individual security components integrate and operate, including data protection. SSE identifies and minimizes security vulnerabilities across perimeter, network, endpoint, application, physical, and data security throughout the Systems Development Life Cycle.
Risk and Vulnerability Assessment (RVA):
This SIN provides services that assess threats and vulnerabilities, identify deviations from acceptable configurations, policies, or guidelines, evaluate the level of risk, and suggest suitable mitigation measures for both operational and non-operational scenarios. Some of the services covered in this SIN include:
- Network Mapping
- Vulnerability Scanning
- Phishing Assessment
- Wireless Assessment
- Web Application Assessment
- Operating System Security Assessment (OSSA)
- Database Assessment
- Penetration Testing
Cyber Hunt, which involves activities to respond to crises or urgent situations within a specific domain to mitigate immediate and potential threats.
Incident Response, which helps organizations impacted by a cybersecurity compromise determine the extent of the incident, remove the adversary from their systems, and restore their networks to a more secure state.
Penetration Testing, which involves mimicking real-world attacks to identify methods for circumventing the security features of an application, system, or network.