Computer Security and Compliance
Information Assurance Consulting from
GIAC Certified Security Professionals
GIAC Certification
Information Assurance (IA) is defined by the U.S. DoD as "development, operation, management, and enforcement of security capabilities for systems and networks." Global Information Assurance Certification (GIAC) was established in 1999 to test and certify the knowledge and experience of computer security experts in various fields of information assurance. GIAC certifications are recognized globally by industry, military and government institutions including the United States National Security Agency (NSA). GIAC certifications require candidates to complete rigorous testing to demonstrate their depth of skills in specific knowledge areas, not just general computer security knowledge. Areas covered by GIAC certifications include audit, intrusion detection, incident handling, firewalls and perimeter protection, forensics, hacker techniques, Windows and Unix operating system security, plus secure software and application coding
Progent's security consultants have earned GIAC certification in key areas of information assurance. Progent offers online information assurance services from GIAC-certified consultants and can provide onsite IA expertise in major metropolitan areas throughout the U.S. By offering affordable rates and the highest level of expertise, Progent can give small and mid-size businesses the same quality of information assurance once available only to the largest enterprises and institutions.
Areas of proven expertise available from Progent's GIAC-certified security consultants include:
- Auditing Networks, Perimeters, and Systems
- Incident Handling and Response
- Intrusion Detection and Traffic Analysis
- Web Application Security
- Reverse Engineering Malware
Auditing Networks, Perimeters, and Systems
Progent's security consultants who have obtained the GIAC Systems and Network Auditor (GSNA) credential understand the best practices, system analysis, and forensics required to perform thorough network security audits that can uncover a wide range of known threats and vulnerabilities. Progent can also help you build appropriate countermeasures and defenses based on realistic risk assessment in order to provide ongoing protection for your information system. Specific network security auditing services offered by Progent's GIAC-certified information assurance consultants include:
- Conduct detailed router audits
- Test the Firewall for OS configuration, firewall configuration, and system administration
- Test firewall policies for vulnerabilities, packet flow from all networks, and change control
- Assess third-party software encryption, authentication, virus scanning, and URL redirection
- Review logs and alerts from the Intrusion Detection System (IDS) and Firewall
- Deploy router analysis tools such as Router Audit Tool (RAT), scanning tools such as Nmap, packet building tools such as -Hping2 and Nemesis, sniffers such as Wire Shark, and IDS auditing tools such as Fragroute
- Audit wireless security including 802.11b security issues and LEAP/PEAP authentication using wireless auditing tools such as WSA, Airopeek, and Net Stumbler
- Map your network from inside and outside your Firewall and auditing perimeter defenses
- Perform penetration tests
- Audit configuration of key network services such as DNS and SMTP
- Check database security for Microsoft SQL, MySQL and Oracle
- Identify security weaknesses for web-enabled services and applications
- Evaluate web application architectures and infrastructures
- Look for web-based phishing, resource exhaustion, buffer overflows, hidden form elements, and unexpected user input
- Audit web application user sign-on and sign-off process, session tracking, and management
- Audit Windows-based systems focusing on patch levels, network based services, local services, installed software, security configuration, group policy management, plus log aggregation, management and analysis
- Perform event reconstruction if necessary
- Sarbanes-Oxley and Graham-Leach-Bliley compliance
Incident Handling and Response
Security professionals who have earned the GIAC Certified Incident Handler (GCIH) credential have demonstrated in-depth knowledge of the current threats to systems and networks, along with effective countermeasures. Progent's GIAC-certified security engineers have the knowledge and experience to manage incidents, understand common attack techniques and tools, defend against and respond to attacks when they occur, and detect security gaps in your environment. Additionally, Progent's GIAC-certified information assurance consultants are sensitive to legal issues associated with responding to computer attacks, including employee monitoring, working with law enforcement, and handling evidence.
Progent's incident handling experts can offer consulting assistance both on how to respond to a security incident and how to understand and foil the techniques used by hackers to penetrate your network.
Responding to a Security Incident
Progent's information assurance consultants can help you plan and implement a precise step-by-step procedure for responding to successful network attacks or to physical incidents such as fires, floods and crime. By putting in place a proven and well-defined methodology for incident handling, your company will be able to get systems and services back online as quickly and securely as possible. The step-by-step incident response model recommended and supported by Progent covers these phases:
- In the Preparation Phase, you create a set of tools to use as an incident response Jump Kit, identify the core team of responders, and deploy appropriate instrumentation for your site and system
- In the Identification Phase you report signs of an incident, take the first steps to control it, and establish a chain of custody so that no relevant information or evidence is lost or unreported
- In the Containment Phase you implement predetermined video and audio documentation strategies, execute containment and quarantine procedures, pull the network cable and switch if required, and identify and isolate the Trust Model
- In the Eradication Phase you evaluate whether a backup is compromised, totally rebuild the Operating System if required, and if necessary move to a new architecture
- In the Recovery Phase you determination who makes the decision to return to production, monitor the system, and prepare for increase in attacks
- For Special Incidents such as espionage, inappropriate use, or sexual harassment, take appropriate actions determined by the type of incident
- In the Incident Record Keeping Phase you complete legally acceptable pre-built forms to document and report the incident
- In the Incident Follow-Up Phase you conduct a lessons-learned meeting and define appropriate changes in process for the future
Networks invariably expose substantial amounts of information that can assist potential attackers. In addition to looking for information leakage, attackers also run scans of systems to find security gaps such as weak DMZ systems and firewalls or unsecured wireless LANs. Popular hacking techniques include inverse scanning, blind scans, and bounce scans that obscure their source. Attackers also try to understand and manipulate firewall rule sets and evade Intrusion Detection Systems. Progent's information assurance consultants who hold the GIAC Certified Incident Handler credential can help you understand contemporary hacking techniques in detail so you can take appropriate countermeasures to protect your network. Some of the hacking techniques that Progent can help you understand and defend against include:
- Network-level Attacks such as session hijacking (from Telnet to SSL and SSH), person-in-the-middle attacks, and passive sniffing
- Gathering and Parsing Packets via active sniffing through ARP cache poisoning and DNS injection, DNS cache poisoning to redirect traffic on the Internet, using Netcat for backdoors and Nasty Relays, and IP Address spoofing
- Operating System and Application-Level Attacks utilizing buffer overflows, the MetaSploit Exploitation Framework, the Perl Exploit Library, and format string attacks to exploit vulnerabilities in Windows
- Netcat-based Attacks for transferring files, creating backdoors, shell shoveling, setting up relays to obscure the source of an attack, and launching replay attacks
- Password Cracking with L0phtCrack and John the Ripper
- Web Application Attacks for account harvesting, SQL Injection to manipulate back-end databases, session cloning to grab other Users' web sessions, and cross-site scripting
- Denial of Service Attacks involving distributed Denial of Service, pulsing zombies and reflected attacks, Local Denial of Service, SYN floods and smurf attacks using spoofed broadcast ping messages
- Maintaining Unauthorized Access by creating backdoors using QAZ and Tini, using application-level Trojan Horse Backdoor suites such as VNC and SubSeven, using rootkits to substitute binary executables with malware, and using kernel-level rootkits such as Adore and KIS to compromise the operating system
- Covering the Attacker's Tracks via file and directory camouflage and hiding, log file editing, accounting entry editing of UTMP, WTMP, and Shell Histories, establishing covert channels over HTTP, ICMP, TCP and other protocols, and hiding data in images, music, binaries, or other file types
Progent's information assurance consultants who have been awarded the GIAC Certified Intrusion Analyst (GCIA) credential are familiar with the arsenal of scans, reconnaissance techniques, and network exploits used by the attack community and can help your company with comprehensive intrusion detection and traffic analysis to make sure your network information remains protected. Progent's security professionals have an expert understanding of the workings of TCP/IP, methods of network traffic analysis, and troubleshooting all types of networking complaints from routing problems to firewall and critical server issues. Intrusion detection and traffic analysis techniques and issues familiar to Progent's GIAC-certified security consultants include:
- In-depth understanding of the TCP/IP Communication Model
- Fragmentation
- Core Internet protocols such as Internet Control Message Protocol (ICMP)
- Stimulus and Response
- Microsoft Networking and Security
- Domain Name System (DNS)
- Routing
- The IPsec (Internet Protocol Security) suite of Internet security protocols
- Use of the TCPdump tool to examine Datagram Fields
- Analysis of TCPdump Output
- Using the Snort network intrusion detection system
- Traffic patterns and analysis
- Interoperability and standards in intrusion detection
- Passive analysis techniques
- Identifying crafted packets
- In-depth protocols analysis
- Advanced Analysis Profiling Techniques
- Reducing false-positives
- Identifying Denial-of-Service activity
- IDS/IPS architecture and implementation techniques
- Event correlation and common attack techniques
The GIAC Web Application Security (GWAS) credential focuses on the latest tools and techniques used in designing and testing web applications that deliver data reliably to authorized users while protecting your information from unauthorized ones. Progent's GWAS-certified consultants have hands-on experience using current tools to detect and prevent cross-site scripting (XSS), and SQL Injection as well as an in-depth understanding of authentication and session management systems and their weaknesses and how they are best defended. Progent can help you ensure that your web applications are securely designed and thoroughly tested before they are released to your production environment or used by your clients. Technical areas where Progent's information assurance consultants can provide expertise for web application development and testing include:
- Securing web application architectures and infrastructures
- Cryptography
- Authentication
- Access control
- Session mechanism
- Web application logging
- Input issues and validation
- SQL injection due to incorrect escape character filtering, type handling, etc.
- Cross-Site Scripting
- Phishing attacks for unauthorized information gathering such as name and password harvesting
- HTTP Response Splitting
- Cross-Site Request Forgery
- Resource exhaustion
- Buffer overflows
- Hidden form elements
- Unexpected user input
- User sign-on and sign-off process
- Session tracking and management
- GET vs. POST
- Improper Server Logic
- Web Browser Security
- Server-side Techniques for Protecting Sensitive Data
Progent's information assurance consultants who have earned the GIAC Reverse Engineering Malware (GREM) credential have the skill to guard organizations against malicious software by reverse engineering malware code that attacks widely deployed platforms such as Microsoft operating systems and browsers. By performing in-depth analysis of the mechanisms used by malicious code to carry out attacks, GREM-certified consultants can help organizations to defend against future threats. Services available from Progent's GREM-certified information assurance experts include:
- Analyze malicious document files
- Analyze the techniques used by malware attacks to prevent malicious software from being scrutinized
- Analyze web-based malware
- Examine static Windows malware code in x86 assembly language
- Analyze complex malicious scripts in web browsers
- In-depth analysis malware executables
- Utilize memory forensics techniques to analyze threats
- Deploy debuggers, disassemblers, sniffers, and other tools to analyze malware behavior
- Reverse engineer Windows malware code at the x86 assembly level
Security information and event management (SIEM) solutions combine SIM (Security Information Management) and SEM (Security Event Management) functions to enable comprehensive analysis of security alerts generated by network appliances and applications. Appliances can include firewalls, routers, intrusion detection systems (IDS), intrusion prevention systems (IPS) and other security hardware. The massive amounts of information created by these devices can be managed by SIEM software products, available from vendors like SolarWinds, ManageEngine, and many others. SIEM software collects logs from multiple devices, normalizes the log messages into a common data format, correlates logs and events from various systems and applications, aggregates the data to remove duplicate event records, and produces reports that allow organizations to comply with regulatory requirements for monitoring and reporting security incidents.
Progent's certified security experts and Cisco CCIE network infrastructure consultants can help you plan, deploy, tune, manage and troubleshoot your SIEM ecosystem so you can meet the security and compliance standards that apply to your business or institution.
Additional Industry Certifications Earned by Progent's Security Engineers
In addition to providing the assistance of security experts with GIAC Global Information Assurance Certification credentials, Progent also offers the expertise of CISM-certified security management consultants, CISSP-certified cybersecurity experts, CISSP-ISSAP-certified security architecture professionals, CISA-certified information system security auditing specialists, and CRISC-certified risk management consultants.
Contact Progent for Access to a GIAC-certified Information Assurance Consultant
If you need security support services, phone Progent at
Ransomware 24x7 Hot Line: Call 800-462-8800
Progent's Ransomware 24x7 Hot Line is designed to assist organizations to complete the urgent first phase in mitigating a ransomware assault by stopping the bleeding. Progent's online ransomware expert can help you to locate and isolate infected devices and protect undamaged resources from being compromised. If your system has been penetrated by any strain of ransomware, act fast. Get help quickly by calling Progent's Ransomware Hot Line at 800-462-8800. For details, see Progent's Ransomware 24x7 Hot Line.
An index of content::
Project Implementation Consult
Award Winning Project Management Professionals
For advanced project management support, Progent offers access to senior IT experts with decades of experience in technology management, application development, and business process design for organizations from Big 4 companies to dot-com startups to state government agencies. These proven IT managers offer project management expertise to assist enterprise clients adhere to leading practices to make sure major projects are successfully completed on time and within budget.
IT Services Call Desk Sharing
Virtual Help Desk Computer Consulting
Progent offers three essential types of Call Center support : Microsoft Helpdesk Outsourcing Support Services, Virtual Helpdesk Support, and Help Desk Consulting and Staffing. Progent is a Microsoft-certified Partner and Progent's Help Desk team of certified Microsoft experts offers your customers instant access to a dependable support resource with extensive experience delivering phone support and remote access repair for IT systems powered by Microsoft products. Progent's concentration is on giving the support Help Desk a respected image as a key contributor to company productivity. Progent's goal is to resolve rather than simply report problems.
Microsoft Exchange Upgrade IT Consulting
Microsoft Exchange 2003 Outsourcing
Progent's Microsoft-certified engineers offer computer help and IT consulting expertise for Microsoft Exchange Server 2003, Windows 2003 Server, and for the complete family of Microsoft Servers. Progent's upgrade, integration, administration, and troubleshooting services for Microsoft Exchange Server 2003 include system design, installation, project management, local and remote technical support, Help Desk Call Center support, expert security consulting, and comprehensive network management outsourcing.
Cisco and Microsoft Certified Technology Professional SharePoint application development
Software Integration Companies
If you need assistance creating, enhancing, or troubleshooting applications for Microsoft Windows, any version of Linux, or the Web, Progent's expert team of programmers, relational database designers, and software project managers can help ensure you get the project done on schedule and within your budget. Progent's experienced software developers can provide affordable and efficient online help for jobs as simple as writing VBA macros for Office Excel or as large as developing line-of-business RDBMS applications built on Microsoft SQL Server or MySQL.
24/7/365 Support SharePoint Online
SharePoint Backup and Recovery Support and Integration
Progent's certified SharePoint Server 2019 and SharePoint Online experts offer affordable online and onsite expertise, software development, and technical support services for businesses of any size who want to upgrade to SharePoint Server 2019 or SharePoint Online from prior versions of SharePoint. Progent can assist you design and carry out an efficient upgrade to SharePoint 2019 on prem, SharePoint Online, or a hybrid network model that incorporates onsite and cloud infrastructure into a seamless information management solution.
Microsoft 365 Project Pro Contract Programmer
Contract Programmer Project Web Access
Progent's Microsoft-certified engineers can provide in-depth support in deploying, using and debugging all versions of Project, Project Server, and Microsoft Project Online and can provide a broad range of cost-effective online support services following proven best practices to assist businesses of all sizes to receive all the benefits of this powerful project management solution. Support services available from Progent include solution planning, software configuration and upgrades, setting up secure file and status sharing among onsite and offsite users, network optimization, and customized webinar training.
Non-stop Load Balancing Specialists
F5 Networks BIG-IP Support Services
Progent offers fault tolerant load balancing support covering system load balancing, load balanced program, LAN/WAN infrastructure routing, and content dispatching products such as F5 Networks 3DNS. fault tolerant load balancing vendors for which Progent can provide consulting services include Microsoft Windows Server 2003 Network Load Balancing Manager, Citrix Access Suite and Access Gateway, Cisco Content Services Switch, Cisco Content Engine and LocalDirector 400 series, and F5 Networks BIG-IP.
Microsoft Hyper-V 3.0 Server Consolidation On-site Technical Support
Hyper-V 3.0 Server Computer Consultants
Microsoft Windows Server 2012 R2 Hyper-V enhances virtualization in key areas such as secure multitenancy, flexible infrastructure, cloud readiness, scalability and throughput, and high availability. Progent's Microsoft-certified consulting experts can assist your company to benefit from Hyper-V to deploy and maintain virtual servers to cut network costs and improve productivity.
Remote Management Consulting
Services HP Lights-Out 100c Remote Management Card
Remote management cards offer network administrators full control over a server without the need for an on-site presence. Using remote management cards, all console screen information plus keyboard and mouse operations are transferred to a remote session to a support expert who can be located anywhere with Internet access. Progent's Microsoft and Cisco certified consultants can help you to plan, deploy, and support a fault-tolerant business network that incorporates remote server management cards and Progent can utilize these remote management cards to provide low-cost remote technical support. Progent is familiar with a variety of remote server management cards such as Aten IP9001 remote management cards, American Megatrends MegaRAC remote server management cards, Dell DRAC cards, HP Lights-Out 100c remote management cards, and Peppercon remote server management cards.
Flexential Tampa Data Center Specialists
Specialists Flexential Data Center
Progent makes use of the Flexential Tampa data center primarily to provide private cloud hosting. Progent has a team of network experts based in the Tampa area, and Progent can also provide remote support from Progent's countrywide roster of Microsoft-certified consultants, Cisco-certified CCIE network engineers, CISM and CISSP-certified security experts, Hyper-V and VMware specialists, and veteran DRBC planning consultants. Progent can also help your business to plan and carry out a move to the Flexential data center by providing services like designing system configuration, specifying hardware components, system configuration and testing, debugging, streamling remote network management, and training your network staff.
Ubiquiti UniFi Wave 2 WiFi access point Professional
Top Quality Ubiquiti UniFi Controller Professionals
Progent offers quick access to the expertise of seasoned Wi-Fi specialists who can help you to assess the advantages of Ubiquiti UniFi Wi-Fi access points for your business and help you to design, deploy, maintain, and debug your UniFi wireless network. Progent can also carry out a Wi-Fi site survey to assist you to choose, configure, and position Ubiquiti UniFi wireless APs for optimal signal coverage and throughput.
Help and Support Onsite Support
24x7 Support Online Consulting
For mid-size businesses looking for IT consulting services, Progent can deliver an array of alternatives including local help, remote support, phone-based Help Desk, 24x7 support with automatic system monitoring, temporary staffing, site relocation support, application development, and expert consultation. For medium-size businesses in California or other areas serviced by Progent's field engineers, Progent offers expert onsite support for fixing network issues quickly and economically.
24 Hour Excel 3D Map Development Companies
Microsoft 365 Excel Engineer
Progent's certified Office Excel and Office 365 Excel consultants offer a broad range of remote support services to assist you to plan, develop, test, deploy, administer, and debug business applications powered by any release of Microsoft Excel, including Excel 2016 and Office 365 Excel. Progent can help you to move your existing Excel applications to the latest releases of Excel, integrate Excel with Apple iOS-powered iPhones and iPads and Android smartphones and tablets, and identify and fix compatibility problems between various releases of Office Excel. Progent can provide as-needed help to clients looking for a fast fix to a specific issue related to Excel and Progent can also provide full project management services for migrating or developing line-of-business applications based on Office Excel. Progent's affordable webinar training classes for Excel can be customized to address the special requirements of individuals or groups.
Largest Class Adobe Illustrator
Quark Train
Progent's Mac consultants can promote the creative aspect of Macintosh environments by offering consulting services and training in imaging, sound, and video. Progent's consultants offer help in a range of Apple Mac programs including Photoshop, Adobe Illustrator, InDesign, QuarkXPress, Apple Logic, MOTU Digital Performer, Digidesign Pro Tools, Final Cut Pro, Apple Motion, and Adobe After Effects. Progent can also assist you with specific projects such as capturing or digitizing audio or video or setting up an audio/video post production studio.
Engineers Virtual Server Private Cloud Hosting
Private Cloud Hosting for Virtual Data Centers Professionals
Progent's private cloud hosting enables small and midsize organizations to run mission-critical applications like Microsoft SQL and Exchange from a hardened Tier III data center facility on fault-tolerant hardware with geographically separate data backup. Progent utilizes Microsoft's Hyper-V technology for server virtualization and Microsoft Data Protection Manager for automatic backup replication and restoration. Smaller organizations can take advantage of Progent's private cloud to eliminate large capital costs for the purchase, maintenance, and management of computer equipment and data center facilities while achieving the highest levels of system availability and security.
Select Topic: