EmeSec examples of past performance
and experience range from technical penetration
and vulnerability assessment
testing to high end security
program evaluations.
The following are a snapshot of our capabilities:
Enterprise Vulnerability Assessment and Penetration Testing
EmeSec as a subcontractor has provided network security monitoring and incident
response at an enterprise level. The work includes vulnerability assessment,
interpretation, penetration testing, update of threat test methodologies, documentation
of testing results and recommendations for specific sites and enterprise level
responses. This work also included development and testing of the methodology
in accordance with NIST requirements.
Security Research and Engineering Collaborative Tool Set Testing
EmeSec developed and executed for a DOD agency an initial system assessment
of vulnerabilities, security controls, system description and the overall risks
for a web oriented toolset in a classified environment. EmeSec engineers developed
the functional and technical security requirements following the initial security
control assessment testing and documentation of findings.
Security Policy and Standards
Privacy and Security Evaluation
and Policy Implementation for Navy Medicine
EmeSec Incorporated worked developing, assessing and providing on site reviews
related to Health Insurance Portability and Accountability Act of 1996 (HIPAA)
privacy and security compliance across the Navy Medicine enterprise. The work
included policy mapping and recommendations on streamline policy implementation
and assessment of compliance. The EmeSec team provided consultation on technical
risk assessments for more than 70 sites by the end of the program.