Our Services
We are dedicated to provide various kinds of information security and privacy protection services to our customers in a professional way.
Security Risk Assessent and Audit
- Identify, analyze and evaluate the security risks
- Identify controls or mitigation measures to reduce the risks
- Check for compliance to existing security policy, standards, guidelines and procedures
- Review existing security controls and identify the inadequacies
- Provide recommendations for improvements
Web Penetration Test
- Identify vulnerabilities and attack vectors that include cross-site scripting (XSS), SQL injection, information leakage and broken authentication, etc.
Mobile App Assessment
- Dynamic Analysis - Find security errors in a program while it is running
- Static Analysis - Find security vulnerabilities by examining the source codes or binaries
Security Code Review
- Identify vulnerabilities and attack vectors that include cross-site scripting (XSS), SQL injection, information leakage and broken authentication, etc.
Privacy Impact Assessent
- Identify any data privacy implications / issues
- Analyze the compliance level with the Personal Data (Privacy) Ordinance (PDPO)
- Analyze and clearly indicate the possible and potential privacy impacts and risks that the personal information flows may have on privacy
- Recommend alternative or less privacy-intrusive practice with details in handling personal data to minimize or eradicate any identified privacy impacts