Background
This concept was developed
by ContingenZ experts in response to the reality of
information system security today. Organizations in the
private and public sectors face rapidly-changing conditions,
with ever-increasing demands for connectivity on the one
hand, and privacy on the other. They are called upon to
share more data than ever, while meeting rising standards
for data protection. In many cases these demands have to be
met within tight budgetary constraints, under intense
project scheduling pressures.
The result: a tendency for
information systems or system enhancements to be fielded
prior to full analysis and testing, with dire consequences
for system security. We offer a unique and cost-effective
approach to providing the necessary analysis and testing.
Furthermore, even when an organization has the in-house
resources to perform system testing, there is no substitute
for independent reporting of the true reliability and
security of the newly fielded or soon-to-be fielded systems,
by an independent, outside, trusted authority.
Development environments
are typically fraught with high pressures to meet or exceed
schedule on budget. Security concerns are often given a
lower priority than the other technical specifications. To
many developers, this is reasonable: the system is not being
built to perform security functions, such as authenticate
users; rather, authentication is a subsidiary requirement en
route to the user performing a function or receiving a
service.
Our consulting services include:
