
Cyber insurance: A risky business
Cyber insurance. A risky business! As the frequency of cyber attacks increases and incident recovery becomes more expensive, it is important for businesses to have
DotSec is a professional cyber security organisation that works with national and international clients across most industry sectors and all tiers of government
Cyber insurance. A risky business! As the frequency of cyber attacks increases and incident recovery becomes more expensive, it is important for businesses to have
What? It (still) doesn’t work (again)? Just a quick update to our most recent blog-post… Things do change so quickly on the interwebs you know!
When on earth did that happen? Can you imagine that a reputable organisation would deploy a business-critical security service without first designing and testing it,
It’s in the trees! It’s coming! * Since March, we’ve been very busy providing incident-response and recovery services for organisations that have fallen victim to
Good news! DotSec’s AOC for Service Providers saves you money! DotSec provides managed SIEM services to customers in a range of industries but as described
Dangling DNS records (part 3) – The final pluck! In the final (?) part of our investigation into dangling DNS records and the risk that
Dangling DNS records (part 2) – Still dangling! In our previous Dangling DNS records post, we examined the risks of leaving ‘dangling’ CNAME records pointing to
Dangling DNS records (part 1) – Abandon and dispair! Recently, there has been some interesting news describing how attackers have been able to take over
Worried about sophisticated, state-based cyber actors? As you will be aware of by now, the Prime Minister warned Australians of “sophisticated, state-based cyber actors” targeting
DotSec is a professional information security organisation. Since the late 20th century, we have assisted national and international clients across most industry sectors. We also provide assistance to all tiers of government.
DotSec is a Payments Card Industry (PCI) Qualified Security Assessor (QSA) company; we are also a PCI DSS service provider, and can provide an Attestation of Compliance (AoC) upon request. DotSec professionals have credentials including PCI Qualified Security Assessor (QSA), ISO 27001 lead implementer, and ISO 27001 lead auditor, and we provide ISO/IEC 27001 implementation and preparedness services. DotSec provides audit and remediation advice for APRA’s CPS 234 and ACCC’s CDR. We have a strong IRAP history, assisting companies to become compliant with controls from Australian federal government’s Information Security Manual (ISM) and Protective Security Policy Framework (PSPF). DotSec infosec professionals are certified AWS and Splunk Architects and have a strong history in the design, delivery and management of secure-hosting services for national brands and government.
And finally, DotSec is a signatory to the Queensland Government’s standing offer arrangement for the provision of ICT Services (ICTSS.13.03), and is an accredited GITC (number Q-2554) and QAssure-registered (number 11818) company.