AIS consultants have over a half-century of combined experience in information systems security, network design and engineering, systems engineering, auditing, digital forensics and ethical hacking. Our clients have included government agencies, Big Four accounting firms, Fortune 100 companies, law firms, small businesses, and private citizens.

e-Discovery

Our most frequent application of digital forensics occurs during the electronic discovery phase of civil and criminal litigation. Working hand in hand with attorneys, officials, and other clients we bridge the gap between the technology, its capabilities, and potential uses. We inform on avenues for further e-discovery while maintaining industry standards in chain of custody, discovery and analysis, case relevant reporting, and expert witness services.

Digital forensics for every type of client.

Local law enforcement looking for assistance in pursuing technologically based evidence in criminal investigations, practicing attorneys requiring explanation of technological options on cases, and government agencies requiring third party forensics and analysis for incident response; AIS has dedicated consultants providing a range of services in these areas. Our experience ranges from single device investigation and analysis to investigations into corporate espionage and intellectual property theft. We provide expert witness services in the field of digital forensics and information systems security.

Incident Response

From "preparation phase" to "lessons learned" in moderate to busy enterprise settings, security of client resources always includes assurance and availability. We understand the importance of keeping customer-facing systems and critical systems online throughout the response phase. To do this we develop individualized incident response plans (IRPs) and aid clients in establishing Computer Incident Response Teams (CIRT) to ensure they stay secure and up and running.

Information Assurance

Our consulting services extend to risk management and Information Assurance (IA), ensuring availability, integrity, authentication, confidentiality, and non-repudiation. We help our clients identify risks and ensure only the right people have access to the right data at the right time. Aiding our clients in developing and implementing IA frameworks, we review and develop security policies that make sense and ensure security for your organization.

Vulnerability Management

We assist clients in establishing Vulnerability Management (VM) programs, including development of VM processes: Preparation, pentesting, remediation, and retesting networks, applications, and infrastructure. We evaluate procedures and processes that should be in place to seek, identify, and manage vulnerabilities; ensuring the vulnerability management framework includes patch management processes and procedures, system hardening practices, change management, risk acceptance...

Penetration and Vulnerability Assessment

From scans to full penetration tests, we provide a range of network, webapp, and mobile application penetration testing services. We provide detailed reports, customized to your needs. All testing services are conducted in accordance with industry guidelines and best practices and can be purchased individually or as part of a package.

Infosec Auditing

We conduct various audits of information security systems to ensure a system meets the various controls set by the industry (SANS Top 20, FISMA / NIST 800-53, or client standards/controls). We conduct gap assessments and provide compliance assessments in preparation of an audit that results in an official accreditation (ISO 27001, HIPAA, HIPAA-HITECH, FERPA, etc.)