Information Security Services
Security Awareness Program
This program is designed to enhance the security of an organization by providing security
awareness to all users. COMSEC offers packaged security awareness programs that meet the
requirements of different size organizations. The program can include:
• Awareness Workshops
• Technical Security Awareness Workshops
• Security Awareness Campaign Tools
ISO 27001 planning and Implementations
Certification is entirely optional but is increasingly being demanded from suppliers and business
partners by organizations that are concerned about information security. The certificate has
marketing potential and should help assure most business partners of the organization’s status
with respect to information security without the necessity of conducting their own security
reviews.
Network & Application Penetration Testing
Penetration testing is a method of probing and identifying security vulnerabilities in your
network, and the extent to which they can be exploited by a hacker, later the results are
presented to the system owner with an assessment of their risk to the networked environment
and a remediation plan highlighting the steps needed to eliminate the exposures.
Architecture Review & Design
Our approaching in assessing and designing the architecture for our customers, will include, but
will not be limited to, the examination of:
High Density Applications, Server Rooms & Data Centers, Wiring Closets, VOIP, Wireless LANs
(Wi-Fi), Branch Offices, High Availability, IP Networks, Network Architectures, Network Design,
Network Infrastructure, Network Monitoring, Network Performance, Network Security, Quality
of Service, VPN etc.
Security Risk Management
Our methods include identification & assessment of threats and vulnerabilities, and risk
treatment, we also will help you create a risk treatment plan, develop ongoing security risk
management, set out maintenance and monitoring guidelines, help outline management
reviews.
Vulnerability Assessments
A complete test of your entire IT environment, not just operating systems and network devices,
but also scans for vulnerabilities in software such as web applications and databases,
determines the presence of ADWARE or SPYWARE, and test other security products such as
firewalls and intrusion detection systems to ensure they are functioning appropriately.
Educational Services
Information Security Education, Training & Awareness
The education, training and awareness services are aimed to satisfy the growing need Middle
East enterprises are experiencing to develop skilled work force which will be the base for
implementing the Information Security Strategy.
Our comprehensive offerings include a complete curriculum of courses that can address the
various levels, backgrounds, and
positions in the enterprise and ranging from security essentials
to superior security responsibilities.
We have partnered with the world’s leading information assurance training providers to be able
to offer our Middle East customers with the best quality of security training and awareness.
Certification Courses
• Check Point Security Administration NGX I
• Check Point Security Administration NGX II
• Check Point Security Administration NGX III
• Check Point NGX Security Administration on Nokia IP Security Platforms
• Nokia Security Administration (NSA): Foundation
• Nokia Security Administration (NSA): Connectivity
• Nokia Security Administration (NSA): High Availability
Non-Certification Courses
• Network Security Principles for Administrators
• Ethical Hacking Course
