Risk Analysis

VSR's team of professionals use their experience working with indsutry-leading companies and governments to provide insight into common areas of risk exposure. Leveraging this expertise, VSR has developed risk management programs for leading financial services, insurance and information service providers to adequately identify and act upon risks.

VSR may act in various capacities, including the development of policies, procedures, standards and practices. Leveraging common frameworks such as ISO17799 / 27002, NIST, OWASP, GLBA or COBIT allows VSR to provide a foundation for development or redesign of a risk management program. The flexibility of these frameworks provides rapid integration into existing business processes while introducing metrics for identifying and measuring adherence to industry best practices in information security.

Having a mature risk management program facilitates the reduction of vulnerabilities in an organization and facilitates measurable risk reduction with the support of VSR's other assessment services.

Apple iOS / OSX: Foundation NSXMLParser XXE Vulnerability

XML Schema, DTD, and Entity Attacks

IBM WebSphere Commerce: Encrypted URL Parameter Vulnerable to POA

Timothy D. Morgan presents No Crack Required: Cryptanalysis in Real-World Applications at OWASP AppSecUSA 2012.


Contact us by phone,
fax or e-mail:

Phone: 617.933.8919
Fax: 617.933.8920
Email: inquiry@vsecurity.com