Our cyber security case studies

its integration with existing middleware, web-based and mobile access and custom API handling routines. Additionally, Prism Infosec has been engaged to review the security of the implementation of cloud-services for a migration for a middleware from an on-premise datacenter into the cloud.

We were very keen to make sure we are #cybersecure here at Merralls and with the help of @prisminfosec now have our #CyberEssentials certificate. The guys at Prism were super helpful and friendly, we would highly recommend!

As part of delivering services to our clients we are regularly requested to conduct penetration tests on our applications and servers. As part of our own due diligence we engaged Prism Infosec to review some of our web sites and their team found issues and vulnerabilities that other providers failed to identify.  We were impressed with Prism Infosec’s level of service and the quality of their deliverables and will certainly use them again for future assessments.

All services were delivered on agreed time and budget and the reports were fully accepted by the Organisation and its accreditation bodies.

We have used Prism Infosec for a number of years to deliver the security testing of our internal networks and Internet web applications to ensure we comply with data protection and payment card regulations. They have always delivered comprehensive assessments with well written deliverables that help us to fully understand any risks identified and how we can effectively manage them. Also, the team at Prism Infosec are always on hand to assist us with ad-hoc queries and advice on many different areas of cyber security and regularly go above and beyond what is traditionally expected of a penetration testing service

All services were delivered on agreed time and budget and the reports were fully accepted by the Organisation and its accreditation bodies.

We procured the services of Prism Infosec to produce and subsequently refresh a supplier questionnaire on the security controls planned for hosted and cloud-based systems being tendered to the Council. Prism Infosec worked with us over a number of iterations of the questionnaire, aligning the questions to current Government / NCSC and regulatory requirements (such as the DPA and GDPR) and they worked hard to ensure that we were completely satisfied that the deliverable would work for both our prospective suppliers as well as ourselves.

Business Analyst, Gloucestershire County Council

The reviews covered all of the requirements of the Cabinet Office / PSNA IT Health Check, including Internet-based infrastructure and web application assessments, internal penetration tests and sampled credentialed vulnerability audits, firewall rulebase reviews (Internet and PSN), wireless and BYOD assessments, thin-client and laptop configuration reviews, general architectural pattern analysis and load balancer / Mobile Device Management / remote access VPN configuration reviews.

All audits were delivered on agreed time and budget and the reports were fully accepted by the Public Service Network Authority.

….web application assessments, internal sampled credentialed vulnerability audits, firewall rulebase reviews (Internet and PSN), wireless and BYOD assessments, laptop and desktop reviews, general architectural pattern analysis and Citrix breakout testing. All audits were delivered on agreed time and budget and the reports were accepted first time without further query by the PSN Authority.