Commissum

Red Teaming & Intelligence-Led Penetration Testing

Open source research is carried out to determine your public footprint, and to uncover any leakage of information that attackers could leverage in a targeted attack. Then a test like a real world attack is conducted.

Features

  • Open source intelligence gathering
  • Penetration testing
  • Test ability to detect, respond and recover from an attack
  • SC & DV cleared staff and testers

Benefits

  • A likely scenario of how attackers compromise systems
  • Testing as under realistic circumstances
  • Better understanding of incident response maturity

Pricing

£800 per person per day

Service documents

G-Cloud 9

618463585381615

Commissum

Frank Green

0121 663 1026

frank.green@commissum.com

Planning

Planning
Planning service Yes
How the planning service works Independent planning advice around assurance of data and infrastructure architecture, providing assurance to service users and providers that data is secure. Advice around data segregation, user identity and access management, multi-factor authentication, secure private and public cloud implementation.
Planning service works with specific services No

Training

Training
Training service provided No

Setup and migration

Setup and migration
Setup or migration service available Yes
How the setup or migration service works Secure migration consultancy services, cloud service provider security auditing & assurance and review services, cloud infrastructure and application architecture security testing and review services.
Setup or migration service is for specific cloud services No

Quality assurance and performance testing

Quality assurance and performance testing
Quality assurance and performance testing service Yes
How the quality assurance and performance testing works Commissum, via a partner, provide software performance, load and quality assurance testing utilising both proprietary and open source tools. Test teams can be embedded or remote and Commissum can provide single testers or large teams for larger projects or fast turnaround times.

Security testing

Security testing
Security testing service Yes
Security testing type
  • Penetration testing
  • IT Health Checks
  • Risk analysis
  • Other
Other security testing
  • Application Security Testing
  • Mobile Application Testing
  • SCADA / Critical Infrastructure
  • Internet of Things (IoT) security testing
  • Embedded Systems Security Testing
  • Red-Team Security Testing
  • PCI DSS Testing
  • Vulnerability Assessments
Accredited security testers Yes
Security testing accreditations CREST
Certified Professional (CCP) risk analysts Yes

Ongoing support

Ongoing support
Ongoing support service No

Service scope

Service scope
Service constraints UK-based, normal working hours (9am-5:30pm, Mon-Fri, excluding public holidays) unless otherwise agreed.

User support

User support
Email or online ticketing support Email or online ticketing
Support response times 4 hour email response during normal working hours. Weekend support hours need to be agreed per contract.
User can manage status and priority of support tickets No
Phone support Yes
Phone support availability 9 to 5 (UK time), Monday to Friday
Web chat support No
Support levels Support level provided includes unlimited remote support including telephone and web, onsite support for incident response. Multiple levels are offered ranging from next business day to best efforts.
Costs vary depending on contract.

Resellers

Resellers
Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Conforms to BS7858:2012
Government security clearance Up to Developed Vetting (DV)

Pricing

Pricing
Price £800 per person per day
Discount for educational organisations No

Documents

Documents
Pricing document View uploaded document
Skills Framework for the Information Age rate card View uploaded document
Terms and conditions document View uploaded document
Return to top ↑