CONTINUOUS COMPLIANCE MONITORING
Understand your compliance status based on NIST centered or other cybersecurity frameworks.
CYBERSECURITY, GOVERNANCE, RISK AND COMPLIANCE MANAGEMENT TOOLS
ESM CYBERSECURITY ™
Managing cybersecurity strategy and compliance is difficult without having the appropriate tools to do the job.
ESM cybersecurity enables IT leaders to manage their cybersecurity and compliance postures from a centralized dashboard, specially designed to formulate and create programs based on the most common security and compliance requirements and certifications, operationalize it, track progress, address gaps and communicate results.
FEATURES & FUNCTIONALITY
GET CONTROL OF YOUR CYBER PROGRAM
CYBERSECURITY ROADMAP
Establish a roadmap and POAM to help close the gaps in your current compliance.
PROJECT/TASK PRIORITIZATION
Prioritize your initiatives based on risk tolerance, business objectives and budget. Then assign to key stakeholders to execute.
ADVANCED DATA HANDLING
Seamlessly incorporate data from spread sheets or from other systems.
SELF ASSESSMENT QUESTIONNAIRES
Use framework guidance questions, leverage your Auditors assessment or create your own internal questions based on your unique business requirements.
POA&M GENERATOR
Generate and share your POA&M with initiatives, dates, and budget right out of the system.
DASHBOARDS & REPORTS
Answer key business questions using canned reports or generate custom reports and dashboards on the fly.
GOVERNANCE CALENDAR
Track initiatives, tasks, and milestones on a centralized shared calendar.
BUDGET TRACKING
Track budget, forecast and actual spend across strategic initiatives.
ALERTS & NOTIFICATIONS
Notify users when information requires updates, deadlines are approaching and when metrics are out of tolerance.
KNOWLEDGE MANAGEMENT
Store critical information in a centralized repository: Security Plans, Policies and Pro cedures, Budget and Forecasts, Operational Reports, Other Evidence.
CHOOSE YOUR FRAMEWORK OR CUSTOMIZE YOUR OWN
Use popular frameworks (NIST, CMMC, ISO 27001), expand with custom controls and track your ongoing compliance and cybersecurity posture
MOBILE CYBERSECURITY PLATFORMS
V-OS VIRTUAL SECURE ELEMENT (V-KEY ™ MOBILE APP PROTECTION PLATFORM)
V-OS is the world’s first and only true patented Virtual Secure Element (VSE) based on Global Platform specifications and designed to meet the security requirements for FIPS 140-2 Level 3.
It provides mobile digital identity as well as authentication and authorization.
VIRTUAL SECURE ELEMENT FEATURES & SPECIFICATIONS
TAMPER-RESISTANT DESIGN
V-OS achieves isolation through layered tamper detection and response mechanisms such as anti-debugging, device binding and anti-reverse engineering which protects against hackers and malware.
Sensitive cryptographic keys, data and application codes are protected using advanced techniques in and around V-OS such as binary code morphing, memory encryption and whitebox cryptography techniques.
ERADICATE COSTLY HARDWARE
For a fraction of the costs and with effortless over-the-air deployment, V-OS is able to minimise total costs of ownership and drive faster market penetration.
Personalised keys and cryptographic protections can be dynamically provisioned for the highest levels of security and to support key rotations and tokenisation requirements.
V-OS PERSONALIZATION AND PROVISIONING PROCESS - CERTIFIED CRYPTOGRAPHY
V-OS is a patented cryptographic virtual machine that ensures the integrity of crypto processing as well as protects encryption keys and sensitive information.
It is designed to meet security requirements for FIPS 140-2 Level 3 and Common Criteria EAL3+.
SEAMLESS DEVELOPER INTEGRATION
V-OS comes with a flexible and extensible SDK framework incorporating individualisation and personalisation capabilities for easy integration into your secure mobile applications.
Out-of-the-Box Support:
Block Ciphers: AES (CBC, ECB, CCM, CTR, XTR, KW), 3DES-CBC, DES
Stream Ciphers: RC4, HC128, RABBIT
Public Key: RSA (PKCS#1, OAEP, SHA-1/256), ECC (P-256, P-384, P-521, SHA-1/256)
Hash: SHA-1/256, HMAC (SHA-1/256), MD5
Key Derivation: KDF-HMAC, PBKDF2
PRNG: ANSI X9.31 AES/DES, Hash DRBG SHA256
Other Features: OATH/OCRA, SSL/TLS, Mutual TLS
Platforms: Apple iOS and Google Android
FREE NETWORK SECURITY TOOLS
HAVEIBEENPWNED ™
Visit this website to check if your email address has been compromised in a data breach or other security incident.
When you register a domain with Haveibeenpwned you will receive an email alerting you if your domain has been compromised.
KEEPASS ™
KeePass is a free open-source password manager which helps you to manage passwords in a secure way. Passwords can be stored in one database and locked with a master key.
One only has to remember one single master key to unlock the whole database. Database files are encrypted using the best and most secure encryption algorithms currently known (AES-256, ChaCha20 and Twofish).
SNORT ™
Snort is an open-source Intrusion Prevention System (IPS). Snort IPS uses a series of rules that help define malicious network activity. It uses those rules to find packets that match against them and generates alerts for users.
Snort uses network-based intrusion detection/prevention systems (IDS/IPS) to perform real-time traffic analysis and packet logging on Internet Protocol (IP) networks. It can perform protocol analysis, content searching and matching. Snort can be configured in three main modes using: the sniffer, packet logger and network intrusion detection.
NIKTO2 ™
Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 6 700 potentially dangerous files and programs, outdated versions of over 1250 servers and version-specific problems on over 270 servers.
It also checks for server configuration items such as the presence of multiple index files, HTTP server options and will attempt to identify installed web servers and software. Scan items and plugins are frequently updated and can be automatically updated.
WIREGUARD ™
WireGuard® is a modern VPN that utilizes state-of-the-art cryptography. WireGuard is designed as a generic VPN for running on embedded interfaces and super computers and will fit for different circumstances.
Initially released for the Linux kernel, it is now cross-platform (Windows, macOS, BSD, iOS and Android) and widely deployable. While under continuous development, it is already regarded as one of the most secure VPN solutions in the industry.
