I am doing research for a company that has recently suffered a
break-in at their main site. The company is in a technology field and
has very sensitive data on their computer systems. They fear (and
evidence at the scene points to) that the break-in was a cover to
install eavesdropping software or hardware on some or all of their
systems.
The company was budgeted to replace most of their hardware this year.
The company feels that this replacement will go a long way in meeting
this new security risk. They will also be installing fresh copies of
their system software.
By replacing their hardware, I am fairly certain that hardware
eavesdropping (key loggers, hardware network snoopers, etc.) will be
minimized. By installing fresh copies of Windows, I believe they will
be safe from any possible software eavesdropping techniques (trojans,
backdoors, etc.) as well.
However, the company will be re-importing a large amount of data files
and other non-executable files. I have advised them that the chance of
compromise is minimal, however their competitors are fairly
sophisticated software firms and they would like a second opinion on
this matter so they can be certain their data is truly clean.
I am aware of many security consulting firms and I have been
researching diligently, however, I am having a hard time separating
the truly excellent firms from the groups that have just jumped into
the business to make a quick buck. My client needs absolute
competence, diligence and discretion. At this point, I (and they) are
not concerned with price.
Can someone please help me with this research? I need a list of the
top 5 firms that do this kind of data security work. I would need
ample evidence of your findings. Anyone can simply do a Google search.
Thank you in advance for your assistance. |
