Compliance as a Service

• Home
• About Us
• The Process
• Solutions
• Skills Transfer
• Resource Center
• Current News
• Testimonial
• Contact Us

Cyber Security Systems for Law Enforcement & Intelligence Services

Education on data security standards seminar – 1 day (per data standard)

All industries now are now forced to follow specific data standards. Examples include: Sarbanes Oxley, SB 1386, Payment Card Industry Data Security Standards (PCI DSS), ISO27001 & ID Theft Red Flag Rule. This is particularly true for any business connected with the financial services sector. This means that companies must retain certain data in a particular way. For investigators, fully mastering those standards has to be a must.

With VigiTrust Data Security Standards Workshop your investigators and officers will be enabled to:

• Know what data to look for in a particular business and where to find it.
• Interpret the data and indentify anomalies to start the investigation.
• Accelerate investigations, by going directly to the relevant data, thus avoiding having to go through every computer system with a fine tooth comb:
  1. In a crime investigation if the investigator knows what to look for, they can go directly to the relevant data; once it is found they will be in a position to fully comprehend the security impact of that data.
  2. In cases where data has been tampered with, this will be obvious to the trained investigator. They will be able to garner evidence from what was tampered with and may be able to identify who tampered with it and at a particular point in time the data was interfered with.
  3. Such data investigation must be done according to a set of best practice procedures which set out how investigating systems must be done. LEA and IS staff have to understand this and must ensure that they follow security guidelines.

Extracting evidence from log files – 1 day

Log files are the fingerprints of cyberspace, VigiTrust’s workshop on log files will train your force in the following:

1. How to acquire Log files.
2. Understanding the importance of log files and how to interpret log files.
3. How to investigate log files whilst preserving the chain of custody of the original log file evidence.
4. Detect whether Log files have been tampered with and implement measures to identify the culprit.

Lawful Monitoring and Interception of cyber traffic – 1 day

LEAs need to be able to listen in on the increasingly hi-tech channels of communication used by criminals and terrorists. In addition to traditional intelligence gathering, it is critical that your force has eyes and ears in cyber space. With VigiTrust’s education seminars on Lawful Interception, your agency will learn about the following:

1. Appreciate the evidence that can be garnered from the lawful interception of cyber traffic
2. The different channels of cyber traffic, their challenges and opportunities, e.g.: e-mail, sms, instant messaging and blogging.
3. The latest technology & techniques available for interception.
4. Honeynet: How to learn from cyber criminal’s behavior and knows to trap them in a honeynet.
5. What interception is permissible by law, and what can be used?
6. Global trends relating to Lawful interception, opportunities & challenges

Critical Infrastructure Seminars – 1 day

'It is the policy of the United States to protect against disruption of the operation of information systems for critical infrastructure and thereby help to protect the people, economy, essential human and government services, and national security of the United States'

- U.S. President G. W. Bush, Executive Order 13231 (October 2001)

Your force needs to understand what critical infrastructure is and its relevance to law enforcement and intelligence services. VigiTrust’s CIP education seminars cover the following key topics:

• Overview of what the main critical infrastructure elements are and why they are important.
• What is Critical Infrastructure & how to identify CI in your area of policing?
• How to identify CI vulnerabilities and mitigate against them.
• Understand threats to CI, e.g. Terrorism / Criminal / Disgruntled Employees / Human Errors.
• How to engage the public in countering threats to CI, without causing undue alarm.
• How to engage with businesses.
• How to foster co-operation with other agencies and collaboration platforms such as CERTs to protect CI, best practice Crisis Management for CI related incidents: Planning on how to deal with attacks to or failure of CI.

Customized Seminars

Utilize VigiTrust's extensive data security experience: Let VigiTrust work with your agency to provide tailored seminars specific to the needs of your force.

• Legal Privacy
• Legal Terms
• Resources