Company: Methods
Customized Solutions
We strive for complete customer satisfaction. Since every customer and project have their own requirements, we are working with customized methods . In order to fulfill each customer’s specific requirements, we consciously employ approaches that may seem somewhat unorthodox at first glance. At the start of each project we determine the requirements and the most intelligent solutions together with the customer. This guarantees traceablility and transparency from the beginning to the end of each project for all parties.
Support of Standards
However, customized solutions are not always useful, because they render comparisons or the identification of developments more difficult. We employ open or our own standards wherever benchmarking or trend analyses are required (e.g. ISO/IEC 27002, BSI IT-Grundschutz, OWASP) The normalization of complex data structures is one of our specialties, which allows the realization of customized simulations. Through these simulations, results and developments become measurable and traceable in the context of security checks. This way, the consequences of decisions can be calculated without the potential risks of an actual realization.
Focus on the Customer
For every consulting firm the transfer of know-how to the customer is important. For this reason, a clear documentation is of great importance to us in all our projects. All our results are geared towards a specific target audience. After all, administrators expect a different level of detail than the leading management. We are able to provide information and results in different forms due to our database-oriented approach, for example in form of an extensive Excel document with a to-do list for the respective technicians, as a clear summary in illustrated PDF-format for the management, or even as a thrilling video presentation of successful attacks to illustrate current risks.
Commitment to Competence
Our main asset are our staff members, who have years of experience in the area of IT security. We are constantly developing new attack techniques in our scip Labs. The results of these studies have been published for many years in advisories, books, trade journals, our own newsletter and in our vulnerability database. Furthermore, our staff members attend international conferences and workshops on the topic information security. This guarantees our ability to consistently provide solid and up-to-date expertise.
