Adversarial Simulation

White Oak’s Security Testing provides an in-depth test of your mission-critical systems with highly detailed results – allowing you better understanding of your risk and your compliance issues.

 
 

Screen Shot 2017-09-13 at 10.05.27 AM.jpg

Red Team / Adversarial Simulation

White Oak’s Red Team service simulates real-world attack scenarios to provide you a better understanding of where your defenses are vulnerable.  We will work with your team to develop scenarios that will effectively test your detective controls, your training, and your personnel as if they were responding to an actual incident.  This is a critical exercise that mature security organizations utilize to better understand their actual preparedness for an incident and to help guide their investments in technology, training, and people.  If these services are built effectively they can provide a huge amount of practical insight.

 


Screen Shot 2017-09-13 at 10.06.18 AM.jpg

Penetration Testing

Your organization’s network security is paramount to protecting your customer and employee data along with your intellectual property. Although your network team has likely been focused on security for years, malicious actors have not stopped innovating and adapting and it remains critical that both your internal and external network environments undergo penetration testing for both security and compliance assurance.

White Oak Security utilizes cutting edge tools and manual techniques paired with years of industry experience to uncover weaknesses in your organization’s network security. Our approach addresses both security and compliance issues and we will work with you and your team to prioritize issues and identify the most effective and efficient manner of remediation.

  • Internal Network
  • External Network

Screen Shot 2017-09-13 at 10.07.07 AM.jpg

PCI TEsting 

PCI is a headache but a necessary one if you accept, process, or store credit card information.  The regulations and requirements that apply to services like penetration testing  (11.3) are sometimes confusing and this isn’t helped by the industry, which often uses the term ‘penetration testing’ without really meaning penetration testing.

Our PCI penetration testing services meet the requirements documented in the PCI Data Security Standards (DSS) and we can work with your security and compliance teams to ensure that you are testing the right systems in the right way (and keeping your QSA or bank happy).

  • Penetration Testing
  • PCI Gap Analysis
  • PCI Readiness Assessment

Screen Shot 2017-09-13 at 10.31.12 AM.jpg

SOCIAL ENGINEERING

Regardless of the technological or physical security measures you implement, the strength of your environment and organization comes down to the training, awareness, diligence, and honesty of your organization’s trusted employees, contractors, and vendors.

White Oak Security will work with your organization to identify areas of concern.  We perform target identification and information gathering, followed with persuasion and deception techniques in an attempt to gain access to sensitive information or systems. These efforts identify gaps in training or areas in which existing training needs to be altered or re-emphasized.  We will work with you to build a training approach (and deliver that training if desired) that will provide your employees the information, habits, and process that they need to combat these social engineering techniques.

  • Phishing
  • Vishing
  • On-Site