COMPANY PROFILE
As more and more businesses adopt web approaches, the need for security has become too compelling to ignore. Although some individuals may have "Security" in their title or may deal directly with security on a daily basis, security is everyone's responsibility. As the old saying goes, a chain is only as strong as its weakest link. A workplace may have otherwise excellent security, but if a help desk worker readily gives out or resets lost passwords, or employees let others tailgate on their opening secure doors with their keycard, security can be horribly compromised. Despite the robustness of a firewall, if a single user has hardware (e.g. a modem) or software (e.g. some file sharing software) that allows bypassing the firewall, a hacker may gain access with catastrophic results. There are examples where a single firewall, misconfigured for only a few minutes, allowed a hacker to gain entrance with disastrous results.
Security is an issue during an application's entire lifecycle. Applications must be designed to be secure, they must be developed with security issues in mind, and they must be deployed securely. Security cannot be an afterthought and be effective. System analysts, architects, and programmers must all understand the information security issues and techniques that are germane to their work. For example:
-
programmers must understand how to avoid race conditions and how to implement proper input filtering
-
system architects must understand concepts such as defence in depth and security through obscurity shortcomings.
Computer user awareness is critical, as hackers often directly target them. Users should be familiar with security policies and should know where the most recent copies can be obtained. Users must know what is expected and required of them. Typically this information should be imparted to users initially as part of the new hire process and refreshed as needed.
There is no such thing as a totally secure system -- except perhaps one that is entirely unusable by anyone!
Cipher Solution’s goal is to provide an appropriate level of protection, based on the value of an organization's information and its business needs. The more secure a system is, the more inconvenience illegitimate users experience in accessing it. Our main objective is to provide our clients with technical support so they can focus on anticipating their market rather than reacting to it.
Cipher Solutions service offerings also include technical services, consulting (both on Information Technology infrastructure and application), and website creation just to mention a few.
Cipher Solutions employ over 15 staff members in 4 different business areas and in international locations such as Israel, India and UK. These 4 business areas are:
-
Technical Services and Consulting
-
Traditional client/server applications
-
Web interface solutions
-
Forensic Investigation
-
Penetration Testing
-
Security Analysis
-
Vulnerability Assessment
Cipher Solutions is a unique company that offers a dedicated client support structure for any of its offerings. This gives the client piece of mind knowing that Cipher Solutions not only create customised solution but we are also able to support the solution.
Typically Cipher Solutions clients consist of companies that are concerned about business processes such as document handling and processing. These companies realise that these inefficiencies are leading to lost revenues or even loss of return customers.
Cipher Solutions has been proud to assist many companies in many different
industries. Cipher Solutions has been involved in the following industries:
-
Maintenance of Network infrastructure for ESS Nigeria
-
HR Application Development
-
Network Management for Eclipse Communications
-
Network Design For InfoNet
