Cybersecurity, offensive security and ethical hacking

Our cybersecurity services provide the client with a vision of the real risks of their exposure to public networks, through the simulation of a real attack on the Internet and a map of real risk the organisation has in relation to its own employees and suppliers.

Persistent security monitoring – SOC

The Security Operations Centre (SOC/CERT) of Auren and our blue team make it possible to prevent and monitor, detect and respond to cybersecurity incidents in real time. Apart from real reduction in cyber-risks, it facilitates support of continuity plans, and even refines and improves network architecture performance.

In addition, we offer consolidation services and safe log filing, consisting of configuration and parametrisation of activity logs, as well as retaining and safeguarding policies, to ensure that they are sufficient to establish a full trace (digital evidence) with due guarantees. We offer evaluation and enforcement of security on platforms, in order to minimise the attack surface of the most critical systems.

Expert-Forensic and specific technical audits

Expert opinions (judicial and non-judicial) and forensic analysis.

Standards and ICT control frameworks

Unification and definition of control frameworks. Software audits, implementation and audits in relation to IT safety, management and quality.

Improvement in the software development process, analysis and management of technological risks, and adoption of international standards in data processing centres.

Risk Management and Cybersecurity Strategy

Safety and systems guideline plans, business continuity: contingency plan and management of business continuity, safety and project technical office. Design and implementation of controls and control tests in business applications against risk of fraud or errors, and Due Diligence of computer systems.

ICT Compliance

Audit and consultancy of technical measures related to the privacy/protection of personal data (General Data Protection Regulation and Organic Law on Data Protection); implementation plan for the National Security Plan; adaptation to the regulation on security in credit cards; security of networks and computer systems in the European Union and cybersecurity regulations, and risks in the banking sector.

 Training in Cybersecurity

Auren offers specialised courses in cybersecurity and IT governance (possibility of taking them in-house, under part-time attendance conditions, subject to being reimbursed by Fundación Tripartita), among others.