IT Assurance Services

Identify, Understand, Resolve

Testing and assuring the security of your business

GraVoc’s IT assurance services help you identify, understand and resolve configuration and security vulnerabilities before they are exploited by real-life attacks. Our expert team of Information Security consultants use sophisticated technology tools to scan and identify potential risks to your information system environment.

IT Assurance Services Include:

External Penetration Testing Services

Vulnerabilities at the network perimeter expose an organization to a variety of external threats, ultimately increasing its overall risk exposure. Through a series of scans run outside of the network perimeter, GraVoc’s external penetration test examines configurations of the firewall and other devices in place to prevent intrusions into an organization’s network. Once the data has been collected and analyzed, GraVoc provides a set of recommendations indicating the best methods for improving the security of the network perimeter. Along with these recommendations, GraVoc also analyzes firewall rules and configurations to further determine a company’s overall risk exposure and the appropriateness of existing security settings, and it can provide a report assessing risks surrounding remote access connections into the network.

External Penetration Testing Services can include: Port scanning, Ping testing, Whois search, Traceroute analysis, Manual network cracking tools

Internal Network Vulnerability Assessment Services

With so much attention focused on protecting the network from hackers, viruses, and other external threats, a network’s internal vulnerabilities are often overlooked. GraVoc’s Internal Network Vulnerability Assessment services are designed to identify weaknesses within the local area network (LAN) by analyzing security-related configurations, services running, and other potential weaknesses through a series of scans run from inside of the network perimeter. Once data has been collected and analyzed, GraVoc compiles a set of recommendations to address discovered vulnerabilities and ensure compliance with industry best practices and related regulatory guidelines.

Website, Code and Mobile Application Testing Services

GraVoc uses a variety of tools and manual testing methods to assess the security and integrity of websites and mobile applications. Our Web and Mobile Application service tests for issues with code, potentially harmful files present, insecure services running, and potentially harmful plugins in place. After analyzing the potential web and mobile app weaknesses, GraVoc provides a report identifying potential issues, prioritizing remediation efforts, and suggesting remediation measures.

Some of these services can include:

  • Check infrastructure against potential avenues of attack.
  • Review cryptography.
  • Discover host and determine operating systems, hardware/software and firmware versions.
  • Check for open ports, potential backdoors and malicious code.
  • Perform configuration and deployment management testing.
  • Check for missing security patches and services packs.
  • Analyze network traffic.
  • Assess underlying technologies and potential vulnerabilities in how they communicate.

 

Wireless Security Assessment Services

GraVoc’s wireless security assessment combines internal/external vulnerability testing and configuration analysis to ensure that wireless networks are properly secured. This service analyzes potential threats and vulnerabilities associated with an organization’s wireless activities, and it evaluates the wireless network’s susceptibility to threats such as unauthorized access, rouge access points, privilege escalation, wardriving, and accessing a wired corporate network through wireless access points. After using a variety of tools to evaluate the strength of wireless security controls, GraVoc provides a report prioritizing potential issues and suggesting remediation measures.

Awards

We are proud to have been awarded the “Best of” award by Banker & Tradesmen for our IT Assurance Services and Information Security Services.

Banking Consultant

Gold – 2017, 2018
Silver – 2016

Auditors, Gold

2011, 2015

Banking Technology

Gold – 2017
Silver – 2015, 2016

Awards

We are proud to  to have been awarded the “Best of” award by Banker & Tradesmen for our IT Assurance Services and Information Security Services.

Banking Consultant

Gold – 2017, 2018
Silver – 2016

Auditors, Gold

2011, 2015

Banking Technology

Gold – 2017
Silver – 2015, 2016

IT Assurance Service Area

IT Assurance Service Area

GraVoc is located in Peabody Massachusetts and provides Information Security services including IT Assurance, External Penetration Testing, Internal Network Vulnerability Assessments, Wireless Security Assessments and Website & Mobile Application to states in the New England area. GraVoc’s Information Security employees hold certifications in CCNA Security, CISM, CISA, CRISC, C|EH, CISSP, and E|CIH. Below is a list of our Massachusetts and New Hampshire service area. GraVoc also provides Information Security services in Connecticut, Maine, Rhode Island and Vermont but are not limited to these states.

Massachusetts IT Assurance Service Area:

Acton, Amesbury, Andover, Arlington, Ashby, Ashland, Ayer, Bedford, Belmont, Beverly, Billerica, Boston, Boxborough, Boxford, Burlington, Cambridge, Carlisle, Chelmsford, Chelsea, Concord, Danvers, Dracut, Dunstable, East Boston, Essex, Everett, Framingham, Georgetown, Gloucester, Groton, Groveland, Hamilton, Haverhill, Holliston, Hopkinton, Hudson, Ipswich, Lawrence, Lexington, Lincoln, Littleton, Lowell, Lynn, Lynnfield, Malden, Manchester by the sea, Marblehead, Marlborough, Maynard, Medford, Melrose, Merrimac, Methuen, Middleton, Nahant, Natick, Newbury, Newburyport, Newton, North Andover, North Reading, Peabody, Pepperell, Reading, Revere, Rockport, Rowley, Salem, Salisbury, Saugus, Sherborn, Shirley, Somerville, Stoneham, Stow, South Boston, Sudbury, Swampscott, Tewksbury, Topsfield, Townsend, Tyngsborough, Wakefield, Waltham, Watertown, Wayland, Wenham, West Newbury, Westford, Weston, Wilmington, Winchester, Winthrop and Woburn.

Our Massachusetts IT Assurance Service Area Also Includes: Barnstable County, Berkshire County, Bristol County, Dukes County, Franklin County, Hamden County, Hampshire County, Nantucket County, Norfolk County, Plymouth County and Worcester County.

New Hampshire IT Assurance Service Area:

Amherst, Andover, Atkinson, Auburn, Boscawen, Bow, Bradford, Brentwood, Candia, Canterbury, Chester, Concord, Danbury, Danville, Deerfield, Derry, Dunbarton, East Kingston, Epping, Epsom, Exeter, Franklin, Fremont, Greenland, Hampstead, Hampton Falls, Hampton, Henniker, Hill, Hooksett, Hopkinton, Kensington, Kingston, Loudon, Lyndeborough, New Castle, New London, Newbury, Newfields, Newington, Newmarket, Newton, Northfield, North Hampton, Northwood, Nottingham, Pembroke, Pittsfield, Plaistow, Portsmouth, Raymond, Rye, Salem, Salisbury, Sandown, Seabrook, South Hampton, Stratham, Sutton, Warner, Webster, Wilmot and Windham.

Our New Hampshire IT Assurance Service Area Also Includes: Hillsborough County, Rockingham County and Cheshire County.

Information Security News

IRS Issues Warning Against Unusual Phishing Scheme

The Internal Revenue Service is warning taxpayers of an unusual phishing scheme that is going around this tax season. Using stolen data obtained by tax professionals, criminals are filing fraudulent tax returns and depositing them into actual taxpayers’ bank accounts.

read more

GET IN TOUCH

Have a question or want to discuss our IT Assurance services? Contact a GraVoc employee below by filling out the form!

Pin It on Pinterest