Unrivalled talent and recognized world-class security expertise
At NCC Group we can boast unrivalled talent and recognized world-class security expertise.
Bringing together best in class security consultancies iSEC Partners, Intrepidus Group, Matasano, NCC Group and NGS to form a globally respected and vendor independent security consultancy.
We provide discerning clients with high-end application services including penetration testing, code review, design review, architecture review, threat modeling and Secure Development Lifecycle creation.
We have deep expertise in the most complicated infrastructure issues currently facing modern enterprises, including cloud computing, virtualization, VoIP, wireless network and storage security.
We have deep a understanding of mobile architectures and application development, having assessed many mobile applications, assisted organizations in leveraging mobile development security best practices, and reviewed device-level security controls while working with OEMs and telecommunications providers.
Leading provider of security assessments
We have a wealth of experience building, breaking, fixing and deploying cryptographic solutions that our customers rely on for their core business, data protection, compliance and security needs.
Managed Security Services
How do you assure your security inbetween penetration tests?
Our Managed Security Services can dramatically improve your ongoing security posture through more frequent, cost effective security assessments, helping you to identify, assess and manage risk.
With most organisations still opting to conduct penetration tests once a year there are potentially significant periods for new vulnerabilities to be introduced.
Risk Management & Governance
Experience and Know-How
We deliver a systematic and strategic approach, essential in the modern compliance landscape. We are a PCI qualified security assessor and approved scanning vendor, as well as an ISO 27001 accredited organization.
The moving target of computer security is hard to hit, even for seasoned security practitioners. Without good and relevant training that is continuously reinforced and updated, it is easy to get behind the threat curve and make mistakes.