Now you will be redirected to Innova's leading brand of self-service solutions Kiosk Innova's website.

www.kioskinnova.com

Information Security

Information Security is unquestionably important for all businesses





Get ready today for the threats of tomorrow

Information is crucial to your enterprise and when you make highly costly investments into data security you expect a dependable solution. But are you completely ready for tomorrow’s threats? Innova has a wide range of experience as an information security consultant. Its specialist staff give expert guidance to enterprises that need to comply with the requirements of ISO 27001 (Information Security Management System-ISMS). And thanks to its knowledge of technologies―such as forensics, penetration tests and PCI DSS―Innova can help your business develop a protection methodology that complies with international best practice in data security. Innova’s team of specialists can provide consultancy services during the transition from old security systems to new ones, for which they can also provide the necessary infrastructure. Its services are suitable for companies working in any sector, from SMEs to large businesses.

Targeted attacks increase the importance of ISMS

Recent studies show that cyberattacks are no longer carried out using standard methods. Likewise, motivations have moved on from that of hackers who try to breach into private information for personal satisfaction and glory. Instead, in today’s fast-changing business environment, attempts to gain unauthorised access into computer systems are carefully targeted and are commissioned by individuals for malicious ends. Information security therefore requires increasingly sophisticated safeguards. It is unlikely that simply making an investment in existing security solutions―either software or hardware―will ensure complete protection. The support of experienced consultants is also essential, and Innova provides cutting-edge services. In addition to establishing an ISO 27001-compliant ISMS, its information security consultancy services also implement rigorous penetration tests.

Innova provides security for the mobile generation

Innova focuses on providing security for handheld computer devices, a need brought about by BYOD (Bring Your Own Device) policies, which a company’s general security strategy must cover. The goal is to safeguard information generated on mobile devices―even as they change location―by means of an in-built ISMS compliant with ISO 27001. Corporate information and data is thereby secured from end to end wherever it is held―be it an employee’s smartphone or a shared office printer.

Innova’s consultancy services cover:

  • ISO 27001 (ISMS)
  • Penetration Testing
  • Security assessments
  • PCI DSS / Visa PIN security compliance
  • Pitfall / Vulnerability management
  • Network abnormality analyses
  • Application security testing
  • Web application security testing
  • UNIX/Linux hardening
  • Load testing
  • Training sessions
  • ISO 27001 (ISMS) awareness
  • PCI DSS awareness
  • Secure application development
  • Leak test techniques
  • Network security techniques

ISO 27001 (ISMS)

Innova has one of the most proficient teams currently implementing the ISO 27001 global information security standard. The team generally begins work by conducting a thorough assessment of vulnerabilities to calculate how they might be exploited, putting at risk valuable information, applications and databases. It then painstakingly designs a set of consultancy services and prepares a security policy and new procedures tailored to the client company’s needs―all in accordance with international standards.

PCI DSS

Innova also helps companies to implement the Payment Card Industry Data Security Standard, the main security criteria required by payment systems that handle large numbers of transactions. It provides guidance on the creation of a secure and stable network, implements systems to protect cardholder information, identifies vulnerabilities, provides access control, monitors the network, and ensures the security of information. A specialist team manages this process and the continuity of compliance with PCI DSS.

Risk Analysis

Innova security experts can create an inventory of all the information assets belonging to your enterprise, giving each component a risk rating after conducting a multi-dimensional risk analysis. You will then be able to manage risks in the way best suited to your requirements with an in-built ISMS compliant with ISO 27001.

ISO 27001 stages:

  • ISMS project planning
  • Formulating an information security strategy suited to the ISMS
  • Defining information assets and assessing their value
  • Conducting a security risk assessment
  • Defining security controls and their goals
  • Developing, implementing and managing policies, standards and procedures
  • Forming information security executive boards, associations and organisations
  • Managing the ISMS certification process and the implementation of all required systems

Forensics

Experienced Innova consultants offer several competencies, such as the ability to trace malicious access, detecting unauthorised access attempts and providing evidence for use in legal proceedings.

Penetration test

Thanks to the penetration test, businesses can measure the success of their investment in information security. Detailed reports of leak tests can detect vulnerable points in any existing information security system, enabling a company to decide whether they need to make a partial or total replacement of its existing systems and measures.

Two of our clients:

TTNET’S ISO 27001 preparation project

With over six million subscribers, Turkey’s largest Internet service provider, TTNET, was one of the first companies to act on new regulations that made ISO 270001 compulsory for all Internet and GSM providers. TTNET chose Innova’s consultancy services to help it achieve its aims. TTNET’s Information Security Manager and ISO 27001 Project Manager, Kubilay Önder, said: “We completed the project and implemented control processes without any problem and gained the ISO 27001 accreditation. With Innova we were able to identify our strengths and weaknesses in relation to information security.”

Success Story: TTNET ISO 27001 Certification

Teknosa’s ISO 27001 certification process

Turkey’s largest technology retail chain, Teknosa, chose Innova for its ISO 27001 certification process. Teknosa’s Risk & Quality Manager Aynur Oktay was delighted with the outcome, and said: “We used Innova’s consultancy services for the last phase of implementing our Information Security Management System. At the end of the seven-month project Teknosa became one of the few companies to attain the most comprehensive ISO 27001 certification in Turkey. We would like to thank Innova for their help.”