IT security

Security services

ICPS adopts highest standards to ensure quality is set in its processes, people and technology. We can cater for all your IT based security needs, focusing on tailoring solutions that fit your needs. That’s why we can assess your company’s IT system even before getting to the core of your request and providing you with the most effective solutions in line with international security norms.

We have the right expertise, experience and accreditation to secure your business and give you peace of mind. We run the battlefield every day being in the banking and financial environment. Our professional experts, certified with renowned institutions, are ready to assist Acquirers, Financial Institutions, Payment Service Providers, merchants and service providers in achieving and maintaining compliance.

We have lead, implemented and performed the following for Mauritian and African financial companies:

• Payment Card Industry (PCI) Certification implementation and audit
• Comprehensive IT Security assessment including penetration testing
• Maintain security on a day-to-day basis
  

ICPS will accompany you to identify and implement PCI DSS (Payment Card Industry Data Security Standard) requirements within your organization. We ensure a continuous improvement and maintenance in securing information in our environment. Our objective is to ensure adherence to the technical and operational requirements designed to protect cardholder data. This is the highest standard of data security as measured by the Payment Card Industry.

We adopt a phase approach as per following:

We offer a product in a box approach for the remediation phase

External Vulnerability Scanning (ASV scanning) Internal Vulnerability Scanning External Network Penetration Testing Internal Penetration Testing Internal / External Application Security Testing Security Event Logging and Monitoring Firewall, Router and Switch Security Reviews

Attaining certification is one thing but maintaining it is very challenging. ICPS will take this burden off your shoulders.

The PCI DSS Yearly Maintenance Services

Information security is our business. Our range of services includes:

Comprehensive Security Assessment & Consultancy

• We verify all your system including ATMs, POS and MPOS and advise on practical recommendations to improve overall security such as security hardening, physical security, processes and policies.
• Payment Card Data Security Standard (PCI DSS) & Payment Application Data Security Standard (PA DSS) Implementation and Certification
• Information Security & PCI Training
• Networking Security review

Vulnerability and Penetration Testing
Both manual and automated security scans are executed against all systems including application and network devices.

As a result, a list of vulnerabilities will be identified and we will accompany you with solutions and implementation guidelines to close the identified loop holes. A free rescan is also offered to confirm remediation of high and critical vulnerabilities.

Note: Specific scans are run as preventive measures to strengthen your security and make life of hackers or malicious users difficult:

• Internal Vulnerability Scan
• External Vulnerability Scan
• Internal Network Penetration Testing
• External Network Penetration Testing
• Application Penetration Testing

Information Security Process Advisory (ISPA)

• Caters for services related to Risk and Compliance, including ISO 27001 and PCI DSS
• Helps to assist organisations design and implement governance/compliance roadmap to ensure that they operate within the boundaries of relevant legislation and regulations
• Supports companies in identifying, understanding and managing their information security risks.