Established in 2000, ECSC is the UK’s longest running, ‘full service’ information and cyber security service provider. ECSC has grown rapidly to offer a complete range of cyber security solutions and services to all sectors, including education, retail, legal, financial and local authorities.All our consultants are highly qualified: our minimum qualification is the well respected Certified Information Systems Security Professional (CISSP). Our PCI specialists are all Payment Card Industry Qualified Security Assessors (PCI QSA), and our ISO 27001 specialists have all passed the ISO 27001 Lead Auditor examination. We were also the UK's first ever PCI Managed Service Provider.
Cloud Security
As part of an effective Cyber Security Management System (CSMS), ECSC’s Cloud Service Assessment helps you to assess the cyber security status of a vast range of cloud services. Where required we can help with remediation of any weaknesses or provide advice on complementary services with additional specialist ECSC cyber security cloud managed services.
Firewall Security
ECSC ensures appropriate rule-sets are in place, management interfaces are appropriately secured, firmware is updated promptly and logs effectively monitored.
Managed Security Services Provider
The scope of code analysis can be wide, so prior to the start of any assessment, we perform an initial investigation to uncover likely weaknesses, and help you develop an appropriate specification. An audit approach, as an alternative to extensive testing, can give you many benefits, whilst requiring less resources.
Penetration Testing
ECSC can test your internal and external networks, and also particular applications, to find security vulnerabilities that could allow attackers to gain network access from the Internet, acquire administration login credentials, or extract confidential information such as credit card details.
Security Operations & Incident Response
ECSC Group plc and Broadcast Media Services Ltd (BMS) support clients during major incidents and, together, we have designed a range of exercises, enabling key personnel to react to events as the scenario develops in a safe Boardroom setting. Such exercises help individuals prepare, but also help to develop and enhance formal incident response plan documents, which can be helpful as part of building a 'defensible position' with regard to GDPR.
SIEM
Secure collection of logs is vital in effective post-breach recovery and investigations. ECSC can help effectively collect and correlate a wide range of security logs.