GIAC Certification
GIAC Certified Information Assurance ConsultantsInformation Assurance (IA) is defined by the U.S. DoD as "development, operation, management, and enforcement of security capabilities for systems and networks." Global Information Assurance Certification (GIAC) was established in 1999 to test and certify the knowledge and experience of computer security experts in various fields of information assurance. GIAC certifications are recognized globally by industry, military and government institutions including the United States National Security Agency (NSA). GIAC certifications require candidates to complete rigorous testing to demonstrate their depth of skills in specific knowledge areas, not just general computer security knowledge. Areas covered by GIAC certifications include audit, intrusion detection, incident handling, firewalls and perimeter protection, forensics, hacker techniques, Windows and Unix operating system security, plus secure software and application coding

Progent's security consultants have earned GIAC certification in key areas of information assurance. Progent offers online information assurance services from GIAC-certified consultants and can provide onsite IA expertise in major metropolitan areas throughout the U.S. By offering affordable rates and the highest level of expertise, Progent can give small and mid-size businesses the same quality of information assurance once available only to the largest enterprises and institutions.

Areas of proven expertise available from Progent's GIAC-certified security consultants include:

Progent's GIAC-certified information assurance experts can also work with Progent's Cisco-certified CCIE network infrastructure consultants to help organizations design, deploy and operate a comprehensive security information and event management (SIEM) solutions.

Auditing Networks, Perimeters, and Systems
Progent's security consultants who have obtained the GIAC Systems and Network Auditor (GSNA) credential understand the best practices, system analysis, and forensics required to perform thorough network security audits that can uncover a wide range of known threats and vulnerabilities. Progent can also help you build appropriate countermeasures and defenses based on realistic risk assessment in order to provide ongoing protection for your information system. Specific network security auditing services offered by Progent's GIAC-certified information assurance consultants include:

  • Conduct detailed router audits
  • Test the Firewall for OS configuration, firewall configuration, and system administration
  • Test firewall policies for vulnerabilities, packet flow from all networks, and change control
  • Assess third-party software encryption, authentication, virus scanning, and URL redirection
  • Review logs and alerts from the Intrusion Detection System (IDS) and Firewall
  • Deploy router analysis tools such as Router Audit Tool (RAT), scanning tools such as Nmap, packet building tools such as -Hping2 and Nemesis, sniffers such as Wire Shark, and IDS auditing tools such as Fragroute
  • Audit wireless security including 802.11b security issues and LEAP/PEAP authentication using wireless auditing tools such as WSA, Airopeek, and Net Stumbler
  • Map your network from inside and outside your Firewall and auditing perimeter defenses
  • Perform penetration tests
  • Audit configuration of key network services such as DNS and SMTP
  • Check database security for Microsoft SQL, MySQL and Oracle
  • Identify security weaknesses for web-enabled services and applications
  • Evaluate web application architectures and infrastructures
  • Look for web-based phishing, resource exhaustion, buffer overflows, hidden form elements, and unexpected user input
  • Audit web application user sign-on and sign-off process, session tracking, and management
  • Audit Windows-based systems focusing on patch levels, network based services, local services, installed software, security configuration, group policy management, plus log aggregation, management and analysis
  • Perform event reconstruction if necessary
  • Sarbanes-Oxley and Graham-Leach-Bliley compliance
Progent offers a selection of value-priced service packages for assessing the vulnerability of your network to attack. For small organizations, Progent offers two security inventory scanning packages, an External Security Inventory Checkup for evaluating the security profile of your web-facing resources and an Internal Security Inventory Scan to determine the risk from attacks from within your firewall. For larger organizations, Progent offers variety of set-price security evaluation service packages to help verify that security policies and systems meet compliance and regulatory requirements.

Incident Handling and Response
Security professionals who have earned the GIAC Certified Incident Handler (GCIH) credential have demonstrated in-depth knowledge of the current threats to systems and networks, along with effective countermeasures. Progent's GIAC-certified security engineers have the knowledge and experience to manage incidents, understand common attack techniques and tools, defend against and respond to attacks when they occur, and detect security gaps in your environment. Additionally, Progent's GIAC-certified information assurance consultants are sensitive to legal issues associated with responding to computer attacks, including employee monitoring, working with law enforcement, and handling evidence.

Progent's incident handling experts can offer consulting assistance both on how to respond to a security incident and how to understand and foil the techniques used by hackers to penetrate your network.

Responding to a Security Incident
Progent's information assurance consultants can help you plan and implement a precise step-by-step procedure for responding to successful network attacks or to physical incidents such as fires, floods and crime. By putting in place a proven and well-defined methodology for incident handling, your company will be able to get systems and services back online as quickly and securely as possible. The step-by-step incident response model recommended and supported by Progent covers these phases:

  • In the Preparation Phase, you create a set of tools to use as an incident response Jump Kit, identify the core team of responders, and deploy appropriate instrumentation for your site and system
  • In the Identification Phase you report signs of an incident, take the first steps to control it, and establish a chain of custody so that no relevant information or evidence is lost or unreported
  • In the Containment Phase you implement predetermined video and audio documentation strategies, execute containment and quarantine procedures, pull the network cable and switch if required, and identify and isolate the Trust Model
  • In the Eradication Phase you evaluate whether a backup is compromised, totally rebuild the Operating System if required, and if necessary move to a new architecture
  • In the Recovery Phase you determination who makes the decision to return to production, monitor the system, and prepare for increase in attacks
  • For Special Incidents such as espionage, inappropriate use, or sexual harassment, take appropriate actions determined by the type of incident
  • In the Incident Record Keeping Phase you complete legally acceptable pre-built forms to document and report the incident
  • In the Incident Follow-Up Phase you conduct a lessons-learned meeting and define appropriate changes in process for the future
Understanding and Defeating Hacker Techniques
Networks invariably expose substantial amounts of information that can assist potential attackers. In addition to looking for information leakage, attackers also run scans of systems to find security gaps such as weak DMZ systems and firewalls or unsecured wireless LANs. Popular hacking techniques include inverse scanning, blind scans, and bounce scans that obscure their source. Attackers also try to understand and manipulate firewall rule sets and evade Intrusion Detection Systems. Progent's information assurance consultants who hold the GIAC Certified Incident Handler credential can help you understand contemporary hacking techniques in detail so you can take appropriate countermeasures to protect your network. Some of the hacking techniques that Progent can help you understand and defend against include:
  • Network-level Attacks such as session hijacking (from Telnet to SSL and SSH), person-in-the-middle attacks, and passive sniffing
  • Gathering and Parsing Packets via active sniffing through ARP cache poisoning and DNS injection, DNS cache poisoning to redirect traffic on the Internet, using Netcat for backdoors and Nasty Relays, and IP Address spoofing
  • Operating System and Application-Level Attacks utilizing buffer overflows, the MetaSploit Exploitation Framework, the Perl Exploit Library, and format string attacks to exploit vulnerabilities in Windows
  • Netcat-based Attacks for transferring files, creating backdoors, shell shoveling, setting up relays to obscure the source of an attack, and launching replay attacks
  • Password Cracking with L0phtCrack and John the Ripper
  • Web Application Attacks for account harvesting, SQL Injection to manipulate back-end databases, session cloning to grab other Users' web sessions, and cross-site scripting
  • Denial of Service Attacks involving distributed Denial of Service, pulsing zombies and reflected attacks, Local Denial of Service, SYN floods and smurf attacks using spoofed broadcast ping messages
  • Maintaining Unauthorized Access by creating backdoors using QAZ and Tini, using application-level Trojan Horse Backdoor suites such as VNC and SubSeven, using rootkits to substitute binary executables with malware, and using kernel-level rootkits such as Adore and KIS to compromise the operating system
  • Covering the Attacker's Tracks via file and directory camouflage and hiding, log file editing, accounting entry editing of UTMP, WTMP, and Shell Histories, establishing covert channels over HTTP, ICMP, TCP and other protocols, and hiding data in images, music, binaries, or other file types
Intrusion Detection and Traffic Analysis
Progent's information assurance consultants who have been awarded the GIAC Certified Intrusion Analyst (GCIA) credential are familiar with the arsenal of scans, reconnaissance techniques, and network exploits used by the attack community and can help your company with comprehensive intrusion detection and traffic analysis to make sure your network information remains protected. Progent's security professionals have an expert understanding of the workings of TCP/IP, methods of network traffic analysis, and troubleshooting all types of networking complaints from routing problems to firewall and critical server issues. Intrusion detection and traffic analysis techniques and issues familiar to Progent's GIAC-certified security consultants include:
  • In-depth understanding of the TCP/IP Communication Model
  • Fragmentation
  • Core Internet protocols such as Internet Control Message Protocol (ICMP)
  • Stimulus and Response
  • Microsoft Networking and Security
  • Domain Name System (DNS)
  • Routing
  • The IPsec (Internet Protocol Security) suite of Internet security protocols
  • Use of the TCPdump tool to examine Datagram Fields
  • Analysis of TCPdump Output
  • Using the Snort network intrusion detection system
  • Traffic patterns and analysis
  • Interoperability and standards in intrusion detection
  • Passive analysis techniques
  • Identifying crafted packets
  • In-depth protocols analysis
  • Advanced Analysis Profiling Techniques
  • Reducing false-positives
  • Identifying Denial-of-Service activity
  • IDS/IPS architecture and implementation techniques
  • Event correlation and common attack techniques
Web Application Security
The GIAC Web Application Security (GWAS) credential focuses on the latest tools and techniques used in designing and testing web applications that deliver data reliably to authorized users while protecting your information from unauthorized ones. Progent's GWAS-certified consultants have hands-on experience using current tools to detect and prevent cross-site scripting (XSS), and SQL Injection as well as an in-depth understanding of authentication and session management systems and their weaknesses and how they are best defended. Progent can help you ensure that your web applications are securely designed and thoroughly tested before they are released to your production environment or used by your clients. Technical areas where Progent's information assurance consultants can provide expertise for web application development and testing include:
  • Securing web application architectures and infrastructures
  • Cryptography
  • Authentication
  • Access control
  • Session mechanism
  • Web application logging
  • Input issues and validation
  • SQL injection due to incorrect escape character filtering, type handling, etc.
  • Cross-Site Scripting
  • Phishing attacks for unauthorized information gathering such as name and password harvesting
  • HTTP Response Splitting
  • Cross-Site Request Forgery
  • Resource exhaustion
  • Buffer overflows
  • Hidden form elements
  • Unexpected user input
  • User sign-on and sign-off process
  • Session tracking and management
  • GET vs. POST
  • Improper Server Logic
  • Web Browser Security
  • Server-side Techniques for Protecting Sensitive Data
Reverse Engineering Malware
Progent's information assurance consultants who have earned the GIAC Reverse Engineering Malware (GREM) credential have the skill to guard organizations against malicious software by reverse engineering malware code that attacks widely deployed platforms such as Microsoft operating systems and browsers. By performing in-depth analysis of the mechanisms used by malicious code to carry out attacks, GREM-certified consultants can help organizations to defend against future threats. Services available from Progent's GREM-certified information assurance experts include:
  • Analyze malicious document files
  • Analyze the techniques used by malware attacks to prevent malicious software from being scrutinized
  • Analyze web-based malware
  • Examine static Windows malware code in x86 assembly language
  • Analyze complex malicious scripts in web browsers
  • In-depth analysis malware executables
  • Utilize memory forensics techniques to analyze threats
  • Deploy debuggers, disassemblers, sniffers, and other tools to analyze malware behavior
  • Reverse engineer Windows malware code at the x86 assembly level
Security Information and Event Management (SIEM) Solutions
Security information and event management (SIEM) solutions combine SIM (Security Information Management) and SEM (Security Event Management) functions to enable comprehensive analysis of security alerts generated by network appliances and applications. Appliances can include firewalls, routers, intrusion detection systems (IDS), intrusion prevention systems (IPS) and other security hardware. The massive amounts of information created by these devices can be managed by SIEM software products, available from vendors like SolarWinds, ManageEngine, and many others. SIEM software collects logs from multiple devices, normalizes the log messages into a common data format, correlates logs and events from various systems and applications, aggregates the data to remove duplicate event records, and produces reports that allow organizations to comply with regulatory requirements for monitoring and reporting security incidents.

Progent's certified security experts and Cisco CCIE network infrastructure consultants can help you plan, deploy, tune, manage and troubleshoot your SIEM ecosystem so you can meet the security and compliance standards that apply to your business or institution.

Additional Industry Certifications Earned by Progent's Security Engineers
In addition to providing the assistance of security experts with GIAC Global Information Assurance Certification credentials, Progent also offers the expertise of CISM-certified security management consultants, CISSP-certified cybersecurity experts, CISSP-ISSAP-certified security architecture professionals, CISA-certified information system security auditing specialists, and CRISC-certified risk management consultants.

To learn more about Progent's security consulting, phone Progent at 800-993-9400 or go to Contact Progent.



An index of content::

  • 802.11x Wi-Fi Site Survey Technology Consulting Services Integration Support 802.11x Wi-Fi Site Survey

  • Troubleshooting SCCM Intune Integration
    SCCM Peer Cache IT Services

    System Center Configuration Manager automates software provisioning at scale, simplifies security and compliance settings management, inventories network assets, protects against company data leakage, performs network health monitoring, enables safe end-user self service, and offers a common point of control for managing mixed-operating system networks based on on-prem, cloud, or hybrid deployment topologies. Progent's Microsoft-certified Configuration Manager consulting team and Azure cloud specialists can help you with any facet of planning, installing, using and troubleshooting a System Center Configuration Manager solution for on-premises, cloud-based, or hybrid environments.

  • After Hours At Home Workers Consulting Services - Atlanta - Data Protection Systems Consulting Marietta - Alpharetta Remote Workforce Expertise in Atlanta - Backup/Restore Systems Assistance Atlanta
  • At Home Workers Uniondale Consulting Services - Voice/Video Conferencing Technology Consulting Experts Uniondale-Westbury , New York Remote Workers Uniondale Consulting Services - Voice/Video Conferencing Solutions Consulting Experts Uniondale-Long Island, NY
  • Web Application Security Security Group
  • BlackBerry Professional Software Network Providers Austin BlackBerry Software Outsource IT Austin
  • CISSP Network Consultant Grand Rapids, MI CISSP Security Contractor Grand Rapids Michigan

  • Microsoft Operations Manager Online Consulting
    Operations Manager Online Support

    Progent's Microsoft-certified consultants have more than 10 years of background planning, implementing, optimizing and troubleshooting System Center Operations Manager environments and can provide organizations of all sizes expert online or onsite consulting services for SCOM 2012. Progent can help your company to plan a topology for Microsoft SCOM 2012 servers that delivers the performance and availability needed to watch over your IT resources efficiently, whether your datacenters are on-premises, cloud-based, or a mixed environment. Progent can also help you to import and customize Microsoft SCOM 2012 management packs according to industry best practices for monitoring network infrastructure as well as both Microsoft and third-party applications and services. Also, Progent can deliver responsive online or on-premises troubleshooting to help you to fix critical problems detected by Microsoft SCOM 2012.

  • Carlsbad-Encinitas Telecommuters Consulting Services in Carlsbad - Voice/Video Conferencing Systems Consultants Carlsbad Remote Workforce Conferencing Technology Expertise Carlsbad-Solana Beach, CA
  • Cisco Migration Company Marin County Consulting Cisco San Rafael
  • Columbus At Home Workforce Endpoint Management Systems Assistance Columbus Fort Benning Telecommuters Columbus Consulting Experts - Endpoint Management Tools Consulting Services Muscogee County Georgia
  • Firewall Setup Network Intrusion Detection
  • Emergency Exchange Tech Support Outsource Indiana, US Exchange Technical Consultants
  • Glendale Teleworkers Call Desk Outsourcing Consulting and Support Services Glendale Offsite Workforce Help Desk Solutions Consulting Garland Centerville
  • Grand Rapids 24/7/365 Ransomware Recovery Glendale, Los Angeles County Biggest Grand Rapids Critical Crypto Recovery Support Services San Fernando Valley
  • Help Desk Engineer Part Time Jobs Santa Cruz California Santa Cruz, CA Microsoft MCP Engineer Subcontractor Jobs
  • IT Consulting Microsoft SharePoint Server 2013 Microsoft SharePoint Online Technical Support Boston, MA

  • Desktop Security Consulting Services
    24x7x365 Desktop Online Troubleshooting

    Progent can deliver a wide array of low-cost remote and on-premises support services to help your business to deploy, manage, and debug desktops and handhelds powered by Microsoft Windows, macOS/OS X, Apple iOS, Google Android, or Linux.

  • Integration Firm BlackBerry Desktop Manager Dayton Ohio Consultancy Services Group BlackBerry BES Dayton Ohio
  • Leeds CentOS Linux, Sun Solaris, UNIX Professionals CentOS Linux, Solaris, UNIX Support Services Leeds, West Yorkshire, United Kingdom
  • Lynnwood-Shoreline, WA At Home Workers Consulting Experts in Lynnwood - Infrastructure Guidance Work from Home Employees Assistance near Lynnwood - Integration Consultants Lynnwood-Bothell
  • Maryland, United States Network Engineer SQL SQL Consulting Group Maryland
  • Microsoft Exchange Server 2013 Network Providers Adelaide, South Australia 24/7 Solution Provider Microsoft Exchange Server 2013 Adelaide, South Australia
  • Microsoft Expert Sydney-Eastern Suburbs Network Support Consultants Sydney-Randwick Small Business IT Outsourcing Company

  • Remote Support Services Remote Workforce Helpdesk
    Largest At Home Workforce Helpdesk Services Remote Consulting

    Progent can provide small and mid-size organizations supplemental or fully outsourced Help Desk call center support services for an at-home workforce.

  • Microsoft SQL 2008 Server IT Consultants MS SQL 2008 Support and Setup
  • Montgomery Work at Home Employees Cybersecurity Systems Consulting Services Montgomery Alabama Montgomery Mobile, United States Work at Home Employees Consultants - Montgomery - Network Security Solutions Consulting and Support Services

  • Installer Online Cisco Certified CCIE
    Cisco Security Network Consulting Companies

    Progent can help you to deploy Cisco's infrastructure products to create a solid basis for your local, cloud-centric, or hybrid-cloud data center and streamline operations in vital areas including compute and storage consolidation, security and compliance, manageability, uptime, and recoverability.

  • Oklahoma Small Business Network Consulting Company Cisco Expert Oklahoma City, Tulsa, Norman, OK Engineers

  • Microsoft Experts SharePoint Server 2007 Remote Troubleshooting
    24/7/365 SharePoint Support and Integration

    Progent’s Microsoft-certified consultants can provide small and midsize businesses IT consulting, maintenance, and troubleshooting services for Microsoft SharePoint Portal Server 2003. Microsoft Office SharePoint Portal Server is an enterprise portal platform for efficiently connecting people, teams and data. SharePoint Portal Server offers a central spot for your workers or customers to access, organize, share and interact with relevant data, documents, and applications and to communicate with one another. It allows quicker and more intelligent decisions, more efficient access across teams and more streamlined business processes. The primary objective of SharePoint Server is to gather together, in a relevant way, all of the diverse sources of information available inside and without a business network. Windows SharePoint Services connect workers, clients, workgroups and major tasks with the knowledge they’ve developed in a manner that makes data convenient to find, download and apply.

  • On-site Support Exchange 2016 Upgrade Planning Exchange Server 2016 Migration Technology Consulting
  • Remote Help Desk System Recovery Lafayette Lafayette, LA Computer Support For Small Offices Remote Help Desk

  • Microsoft Windows 7 Migration Support Outsourcing
    Online Consulting Windows 7 Security

    Progent's certified engineers can assist you to evaluate Windows 7 to confirm application compatibility and to determine its performance and stability operating with your applications. Progent can also show you how to assess the likely strategic advantages of adopting Windows 7. If you decide that Windows 7 makes sense for your business strategy, Progent can assist you to design and carry out a non-disruptive upgrade to Microsoft Windows 7 from a an older release of Windows.

  • Remote Seattle Telecommuters Infrastructure Consulting Experts Work at Home Employees Seattle Expertise - Integration Guidance
  • Remote Workers Wichita Consulting - Conferencing Technology Consulting Wichita Airport ICT Work at Home Employees Guidance near Wichita - Voice/Video Conferencing Systems Assistance Wichita, KS
  • SQL 2012 Network Support Company Fort Collins Colorado SQL Server Support services Fort Collins Colorado
  • SQL IT Outsourcing Firms Minneapolis, MN, Saint Paul, MN, Rochester, MN, Duluth, MN, United States Minneapolis, MN SQL installation and Administration
  • SQL Migration Help Jackson, MS IT Consulting Company SQL Jackson, Mississippi
  • SQL Network Security Consultants Vermont IT Outsourcing SQL Burlington, Rutland, Montpelier, VT
  • SQL Server 2012 Migration Consulting Irving Dallas County Texas Networking Group Microsoft SQL Server 2016
  • Sarasota, FL Designer Sarasota, Florida IT Outsourcing Firms

  • Skype for Business and Cloud Voicemail Specialist
    Microsoft Skype for Business 2015 Network Consultant

    Microsoft Lync Server 2010 supports IM, Presence, voice/video conferencing, desktop sharing, as well as IP-based and traditional PSTN telephony. Lync 2010 can extend the capability of Microsoft Exchange, SharePoint Server and Office desktop or cloud-based Office 365 and simplify administration via integration with Windows AD. Lync 2010 can also reduce expenses by doing away with VoIP hardware and subscription services, PBX gear, or conventional teleconferencing technology. Progent's Microsoft-certified unified communications consultants can provide online and on-premises support to help you to manage and repair your current Lync 2010 environment or assess the advantages of upgrading from Lync Server 2010 to Skype for Business, which is the new release of the product. Progent can also help you to plan and execute an efficient Skype for Business upgrade.

  • Security Company Firewall Firewall Firewall Support Nebraska
  • SharePoint Server 2019 Consultant Corpus Christi, South Texas Help and Support Microsoft SharePoint Server 2013
  • Support and Integration Chief Information Officer Part-Time CIO On-site Technical Support
  • Telecommuters Consulting nearby Uniondale - Security Systems Consultants Uniondale-Ronkonkoma, New York Remote Workers Consulting and Support Services in Uniondale - Security Systems Assistance Uniondale-Hempstead, NY
  • Teleworkers Consultants in Knoxville - Endpoint Management Tools Consulting Services Knoxville Farragut Oak Ridge, United States Knoxville Work at Home Employees Endpoint Management Solutions Consulting Knoxville, Knox County
  • Texas - Houston, TX, San Antonio, TX, Dallas-Fort-Worth, TX, Austin, TX IT Consultant Top Quality Corpus Christi, Texas PC Consulting
  • VMware NSX Hybrid Cloud Consultant Consultant VMware Cross vCenter NSX
  • Windows Server 2012 Software Consulting Firm Windows Server 2012 R2 IT Outsource Mississauga, ON
  • Windows Small Business IT Support Firms Portland, OR Windows Technical Support Organization Portland, OR, Salem, OR, Eugene, OR, Gresham, OR, United States
  • Work from Home Employees Expertise nearby Santa Monica - Call Desk Outsourcing Consulting Santa Monica-Culver City, California Santa Monica Offsite Workforce Help Desk Solutions Consulting and Support Services Santa Monica California

  • © 2002-2020 Progent Corporation. All rights reserved.