Information Security

Picture of lock and credit cards

Risk Management & Compliance Services

GraVoc helps your organization maximize the value out of security investments and ensure compliance with federal, state, and industry regulations. Our goal is to help you identify both potential risks and mitigation strategies.

Services Include: Information Security Program Development, Risk Assessment, Disaster Recovery/Business Continuity Planning, Social Engineering Testing, Digital Forensics & Incident Report.

IT Audit Services

GraVoc’s IT audit services provide an independent and objective review of IT infrastructure, control configuration and regulatory compliance through in-depth testing and expert analysis.

Services Include: Compliance Gap Analysis, IT General Controls Audit, IT Audit

Picture of laptop and compliance book
Picture of laptop and compliance book

IT Audit Services

GraVoc’s IT audit services provide an independent and objective review of IT infrastructure, control configuration and regulatory compliance through in-depth testing and expert analysis.

Services Include: Compliance Gap Analysis, IT General Controls Audit, IT Audit

Picture of Server

Penetration Testing Services

GraVoc’s Penetration Testing Services help you identify, understand and resolve configuration and security vulnerabilities before they are exploited by real-life attacks. Our expert team of Information Security consultants use sophisticated technology tools to scan and identify potential risks to your information system environment.

Services Include: External Penetration Testing, Internal Network Vulnerability Assessment, Network Vulnerability Assessment, Web & Mobile Application Testing

Our Information Security Certifications Include…

CCNA Security

Cisco Certified Network Associate Security


Certified Information Security Manager


Certified Information Systems Auditor


Certified in Risk and Information Systems Control


Certified Ethical Hacker


Certified Information Systems Security Professional


EC-Council Certified Incident Handler


Offensive Security Certified Professional


We are proud to have been awarded the “Best of” award by Banker & Tradesmen for our Information Security services.

Banker and Tradesman Best of Gold Award

Banking Consultant

Gold – 2017, 2018
Silver – 2016

Banker and Tradesman Best of Gold Award


Gold – 2011, 2015

Banker and Tradesman Best of Gold Award

Banking Technology

Gold – 2017
Silver – 2015, 2016

Information Security Videos

fire icon

Business Continuity Planning

Business Continuity Planning is the creation of a strategy through the recognition of threats and risks facing a company, ensuring that personnel and assets are protected and able to function in the event of a disaster. In this video we examine why it is important to ensure your company has a well-thought out Business Continuity Plan.

Learn about our Risk Management & Compliance Services →

puzzle icon

Social Engineering 101

What is social engineering? In this quick video, we examine how Social Engineering is a technique used by attackers to gain sensitive information by deceiving privileged users into revealing information that compromises data security. We also explore different techniques used in Social Engineering attempts.

Read more about Social Engineering →

hacker icon

Silent Hack Attacks

For our silent hack attack security demonstration, we wanted to show how easy it is to steal sensitive information from an RFID device. By simply passing by someone, we were able to steal their data, and create a new card with the stolen information.

Read more about our Silent Hack Attack →

Information Security Service Area

Information Security Service Area

GraVoc is located in Peabody Massachusetts, just north of Boston, and provides Information Security services including IT Audits, Risk Management and Compliance, and Penetration Testing Services to businesses and organizations in the New England area. Below is a list of our Massachusetts and New Hampshire Information Security service area. GraVoc also provides Information Security services in Connecticut, Maine, Rhode Island and Vermont but are not limited to these states.

Massachusetts Information Security Service Area:

Acton, Amesbury, Andover, Arlington, Ashby, Ashland, Ayer, Bedford, Belmont, Beverly, Billerica, Boston, Boxborough, Boxford, Burlington, Cambridge, Carlisle, Chelmsford, Chelsea, Concord, Danvers, Dracut, Dunstable, Essex, Everett, Framingham, Georgetown, Gloucester, Groton, Groveland, Hamilton, Haverhill, Holliston, Hopkinton, Hudson, Ipswich, Lawrence, Lexington, Lincoln, Littleton, Lowell, Lynn, Lynnfield, Malden, Manchester by the sea, Marblehead, Marlborough, Maynard, Medford, Melrose, Merrimac, Methuen, Middleton, Nahant, Natick, Newbury, Newburyport, Newton, North Andover, North Reading, Peabody, Pepperell, Reading, Revere, Rockport, Rowley, Salem, Salisbury, Saugus, Sherborn, Shirley, Somerville, Stoneham, Stow, Sudbury, Swampscott, Tewksbury, Topsfield, Townsend, Tyngsborough, Wakefield, Waltham, Watertown, Wayland, Wenham, West Newbury, Westford, Weston, Wilmington, Winchester, Winthrop, Woburn

Our Information Security Massachusetts service area also includes: Barnstable County, Berkshire County, Bristol County, Dukes County, Franklin County, Hamden County, Hampshire County, Nantucket County, Norfolk County, Plymouth County, Worcester County

Southern New Hampshire Information Security Service Area:

Amherst, Antrim, Atkinson, Auburn, Bedford, Bennington, Brentwood, Brookline, Candia, Chester, Danville, Deerfield, Deering, Derry, East Kingston, Epping, Exeter, Francestown, Fremont, Goffstown, Greenfield, Greenland, Greenville, Hampstead, Hampton Falls, Hampton, Hancock, Hillsborough, Hollis, Hudson, Kensington, Kingston, Litchfield, Londonderry, Lyndeborough, Manchester, Mason, Merrimack, Milford, Mont Vernon, Nashua, New Boston, New Castle, New Ipswich, Newfields, Newington, Newmarket, Newton, North Hampton, Northwood, Nottingham, Pelham, Peterborough, Plaistow, Portsmouth, Raymond, Rye, Salem,Sandown, Seabrook, Sharon Temple, South Hampton, Stratham, Weare, Wilton, Windham, Windsor

Our New Hampshire Information Security service area also includes: Rockingham County, Cheshire County, and Strafford County.

From Our Clients

“Our experience with GraVoc’s information security practice has certainly been a positive one. We have been working with GraVoc since 2005 and, year after year, they continue to help us improve our overall IT and information systems infrastructure. Best of all, GraVoc is willing to adapt their scope and methodology to meet our needs.”

Elaine Sigismondo

SVP of IT, IC Federal Credit Union

“GraVoc’s IT assurance services helped us and our vendors to discover and address potential vulnerabilities in our LAN/WAN environment. As a result, our overall network infrastructure is more secure and better prepared to face emerging threats.”

Scott Harriman

President/CEO, Cumberland County Federal Credit Union

“GraVoc’s IT audit services are just as they claim: thorough and fair. With GraVoc’s expert analysis and unique approach to the audit function, we are confident that risks related to our IT operation are prioritized and addressed appropriately.”

Chris Bailey

VP Risk Manager, Biddeford Savings Bank

Information Security News

Get in Touch

Have a question or want to discuss our Information Security services? Contact a GraVoc employee below by filling out the form!


GraVoc is a technology-consulting firm located in Peabody, Massachusetts just north of Boston. GraVoc is committed to solving business problems for customers through the development, implementation, and support of technology-based solutions.

"One Company, Many Solutions"

10 Centennial Drive, Suite 105, Peabody MA 01960

Pin It on Pinterest