7Safe Services

Data Compromise Investigation

Do you have the knowledge and expertise to effectively deal with a computer forensics incident?

How 7Safe's experts can help

Our team of computer forensics investigators has a vast array of experience in handling data compromises such as breaches of IT security and credit card data. 7Safe’s QFI’s work closely with the UK’s banks and credit card schemes in relation to our clients’ compliance with PCI DSS.

The team works efficiently using bespoke credit card scanning techniques and tested methodologies to triage suspect devices. Our consultants work in a sensitive and discrete manner and strive for the process to be as unobtrusive and efficient as possible.

Our team of Qualified Forensic Investigators respond promptly to organisations who suspect or have experienced a confirmed security breach. Investigations and the actions taken regarding analysis processes adhere to the ACPO (Association of Chief Police Officers) Guidelines for digital computer-based evidence.

ISO 9001:2000 and ISO 27001:2005 Certification

ISO

7Safe is certified against both of these ISO standards, providing high organisation
security standards and effective security management practice.

The 7Safe Investigation Methodology

Information Gathering	Obtain information relevant to the case to prepare for the investigation
Containment & Data Harvesting	Conduct penetration testing, security assessment and forensically image suspect devices; perform network scans, social engineering and interviews
Full Investigation	Conduct full security and forensic investigation to identify source of compromise
Reporting	Detail findings in a clear, concise ‘jargon free’ manner suitable for a technical reader or layman. In addition to the results of the investigation we offer recommendations and remediation advise for the future

Our penetration testing team's approach addresses wide-ranging needs for our clients and we offer an in-depth, comprehensive penetration testing service that tests systems from an external or internal perspective.

External testing usually takes place across the Internet to simulate the view of your systems through the eyes of (and in a similar environment to) a potential attacker.

Internal testing involves attending your site and connecting to your internal network on the appropriate network segment thus seeing services and resources from behind the external perimeter perspective to identify other vulnerabilities.

7Safe's testing is designed to ensure that your systems are operating as expected and that there are no hidden or undiscovered security related issues.

The testing process is a detailed, thorough and extensive process involving the following stages:

Scoping	Assessing the appropriate targets for penetration testing
Discovery	Building information about your network & its services
Vulnerability scanning	Testing systems & services for known vulnerabilities
Target penetration	If within testing scope, systems may be compromised
Analysis	Analysing the results from previous stages for potential impact
Reporting	Detailed findings & recommendations based on the Analysis stage

Independent penetration testing is recommended on a regular basis. However, one-off assessments may be performed.

7Safe also regularly performs application security penetration testing and security code reviews which many clients find an excellent complementary measure.

Our reporting delivers a high-level summary for management purposes together with technical details which are organised according to perceived risk.

Within each section are recommendations for resolving any vulnerabilities found, combined with an overall conclusion which details any additional recommended actions if required.

Case Study

7Safe Services

Data Compromise Investigation

How 7Safe's experts can help

The 7Safe Investigation Methodology

RELATED LINKS