Overview

QCC advises on & provides a full range of penetration testing services to both Government & Corporate Clients including physical pen testing, social engineering pen testing, cyber pen testing and open source intelligence pen testing.

QCC testing services are followed by a comprehensive report detailing identified vulnerabilities & coinciding recommendations of remediation which if implemented will ensure Client risk exposure is reduced going forward.

Risk assessments

QCC can conduct risk assessments to ascertain a Clients risk exposure and then advise on the appropriate level and types of penetration testing required to reduce risk to an acceptable level.

Contact us for further advice or view some of our Penetration Testing case studies.

Threat briefings

QCC can deliver threat briefings to security managers, directors or executives responsible for the protection of their organisation from the risk of hackings, loss of information or physical intrusion. Briefings are tailored for the recipients to ensure they have a full understanding of the subject matter regardless of whether they are technical or non-technical.

Strategic advice

QCC can provide strategic advice on the setting up and running of penetration testing programmes to security managers, directors or executives. Advice is risk based and helps ensure the correct levels of testing are actioned and that resources are targeted in the appropriate areas. Advice is delivered in plain language to ensure non-technical staff have a full understanding of the subject to enable them to make the right decisions for their organisation.

Contact us for further advice or view some of our Penetration Testing case studies.

Physical penetration testing

QCC physical pen testing is conducted in a strict, structured way and to date QCC has a 100% record for gaining unauthorised access to the Client sites we have tested.

QCC cannot provide details of our methods of testing on our website as this would reduce our testing effectiveness but following each test we provide a full report containing details of the test, methods of testing and vulnerabilities identified with coinciding recommendations of remediation to reduce risk to acceptable levels.

Social engineering penetration testing

QCC social engineering pen testing is again conducted in a strict, structured way and to date QCC also has a 100% record for gaining unauthorised access to the Client sites or information we have been tasked with testing via this service.

Again QCC cannot provide details of our testing on our website because our testing effectiveness would be reduced but after each test we deliver to our Client a full report with test details and vulnerabilities identified with coinciding recommendations of remediation to manage risk down to acceptable levels.

Contact us for further advice or view some of our Penetration Testing case studies.

Cyber penetration testing

For cyber pen testing of IT systems QCC recommends our strategic partner who is one of the world’s leading providers of cyber pen testing to both government and corporate Clients. Our strategic partner operates globally and holds full ISO certification for this service.

Following each test our Client is provided with a full report detailing the testing, vulnerabilities identified and coinciding recommendations of remediation to reduce risk to a suitable level.

Application testing

For application testing of online systems and software applications QCC recommends our strategic partner who is one of the world’s leading providers of application testing services to governments and corporates. Our strategic partner operates globally and holds full ISO certification for this service.

Following each test, the Client is delivered a full report explaining the testing, findings and recommendations of remediation to decrease risk to the required level.

Contact us for further advice or view some of our Penetration Testing case studies.

Open source penetration testing

QCC social engineering pen testing is again conducted in a strict, structured way and to date QCC also has a 100% record for gaining unauthorised access to the Client information we have been tasked with testing via this method.

Again QCC cannot provide details of our testing processes on our website because to do so would reduce our testing effectiveness.  After each test we deliver to our Client a full report with test details and vulnerabilities identified with coinciding recommendations of remediation to reduce risk to acceptable levels.