Go to Top

Why EthiSEC?

The primary reason why we believe you should work with EthiSEC is we only provide services in areas we have expertise in. This means we only provide Network and Information Security Professional Services.

We don’t try to be all things, to all people!

By this we mean we don’t provide technology services outside of our expertise.

Why? We’ve learned over the years that if you don’t fully understand what you are doing you will never be able to effectively be able to design, implement and maintain solutions you have limited experience with.

If you consider the following scenarios who would you consult?

  • Would consult a Book Keeper or an Accountant for taxation advice?
  • Would you consult a GP or a specialist Oncologist for cancer treatment?
  • Would you use a Microsoft Windows specialist to configure your Firewall or secure your network?

While there are many talented and knowledgeable people in each of these fields most, commonly people will consult the appropriate specialist for their expert opinion. Often though this isn’t the case when it comes to information security infrastructure such as Firewalls.

EthiSEC believes specialist skills are required to correctly implement any network or information security related infrastructure. We don’t try and sell you a Windows network and then add security to it, we simply secure your infrastructure or provide advice on what we recommend.

We document!

If you purchase any IT infrastructure or professional services from EthiSEC you own and have full access to the documentation of your network.

Many of our peers will consider that they own your IT infrastructure, largely they do this so you have to continue to use them to maintain YOUR IT infrastructure. This typically results in you having no documentation or if it does exist no access to this documentation, this is a practice we strongly disagree with.

We are Certified

Our consultants possess the industry recognised Certified Information Systems Security Professional or CISSP® managed by the International Information Systems Security Certification Consortium, Inc or (ISC)².

For the uninitiated the CISSP® certification is a globally recognised standard of achievement that confirms an individual’s knowledge in the field of information security. CISSPs are typically information assurance professionals who define the architecture, design, management and/or controls that assure the security of business information technology environments.

All CISSPs have passed a six hour exam that assesses the candidates knowledge of the following ten domains:

  1. Access Control
  2. Telecommunications and Network Security
  3. Information Security Governance and Risk Management
  4. Software Development Security
  5. Cryptography
  6. Security Architecture and Design
  7. Operations Security
  8. Business Continuity and Disaster Recovery Planning
  9. Legal, Regulations, Investigations and Compliance
  10. Physical (Environmental) Security

Additionally every CISSP must abide by the (ISC)² Code of Ethics and continue their education to obtain CPE credits in order to maintain this credential.