Security Services

Security is Our Core Business

PurpleBox Security Services include assessment, design, implementation and ongoing management of information security, compliance, and technical security solutions.

We developed our services from the beginning to be delivered as a managed service. Building and maintaining an internal security management team is big challenge. Our services are built to address this challenge, to provide maximum protection to your business at a very competitive cost structure. We achieve this with a focus on:

Automation
Standard and repeatable processes
Out-of-the-box Integration

Experienced Security Resources:

PurpleBox Security Consultants are certified, experienced professionals with in-depth knowledge and hands-on experience in the Security and Compliance fields. Our security consulting and managed services are comprehensive, allowing us to be your single stop security solution provider.

Security Consulting

Compliance Assessment and Reporting

PurpleBox Security enables companies to be in compliance and prove it when necessary. We focus on proper documentation and automation of compliance through reporting dashboards as part of your day-to-day processes. Compliance reporting is part of the process and not an afterthought.

Risk Assessment

In order to effectively manage risk, an organization must first understand it. PurpleBox Security works with our customers to understand the risk profile of an organization across legal, regulatory, compliance, IT, and financial risks, and recommend strategy, process and technical solutions to mitigate risk and prepare to respond to adverse events.

Vulnerability Assessment and Penetration Testing (VA/PT)

Let us test your security defenses using the same techniques that are used by the attackers. An in-depth technical VA/PT is critical to understand the weaknesses in and test the effectiveness of your existing defenses and controls, in your IT infrastructure, Web Applications or physical security controls.

Security Policy and Controls

Security policies and procedures are fundamental to an effective GRC program. We help our customers define policies, procedures, and controls that enable compliance, ensure security and can be automated and integrated with your IT operations.

Managed Security

Vulnerability Scanning Services

All-in-one solution that provides a managed and integrated portal for all your security scanning needs:

PCI ASV scanning
Network, OS and DB vulnerability scanning
SCADA and Industrial Control Systems scanning
Security Configuration scanning
Web Application scanning

Security Monitoring Services

All-in-one solution that provides a managed and integrated SIEM portal that includes:

Network and Host based Intrusion Detection and Prevention Systems (IDS/IPS)
Log collection, monitoring, and retention
Threat Monitoring
Event Correlation and Alerts
Security Intelligence

Application Security Testing Services

All-in-one solution that provides a suite of managed application security services that combines automated tools and manual verification for a more efficient and effective application security testing program:

Application Security Strategy
Application Security Testing
Mobile Application Security
Security in Software Development Lifecycle

Web Application Firewall Services

Managed web application firewall services that is scalable, easy to configure and use. Combined with PurpleBox Security managed services experience, the Qualys technology powered WAF services provides protection and ensures compliance with regulations and standards such as PCI.