Navigation Menu
English (US) English (US)
English (UK) English (UK)
French (France) Français (France)
Chinese (Simplified) 简体中文
Chinese (Traditional) 繁体中文

Expertise


Our Services
Header Image

Corporate Service Presentation

Nowadays, businesses require business intelligence and in-depth strategic responses. Isolated and segregated answers are not providing the necessary efficiency and protection, especially where the digital world is concerned, and cannot therefore fulfill organisations requirements.


Our experts approach each case specifically, with pragmatism, identifying and analysing the situation, understanding problematic and corporate impact levels. We conduct deep analysis, investigating root causes to draw the right conclusions and devise the best-adapted responses and actions plans. We help companies implement the most adequate, least-disruptive technological, organisational and strategic solutions.


Each of our services has an adapted framework and indeed first requires cross-disciplinary inputs to be, in our opinion, effective. The information shared by our customers' is then assessed and analyzed, with a transverse analysis of the applicable regulatory environment, security standards and organisational best practices to identify all related obligations, and, if need be, such information is further inputted into our systems before being Investigated. Finally, a mitigation plan is being designed, involving at least than 2 senior experts in their own field. Throughout the whole process, we insist on transparency and communication with our customers, should further questions or unforeseen aspects arise.

English (US) Version
Chinese (Simplified) Version

What We Do

Compliance

Monitoring

Forensic

Consulting

Crisis

Compliance

With the expansion of cyber security threats that impact data and national security, nations and organizations have set up rules and regulations for their protection.

TEKID legal and Compliance experts have been designing, deploying and managing local and international regulatory compliance programs such as the Chinese Cyber Security Law, European GDPR, cross-regional programs, as well as technical international standards such as ISO, SOC, SOX, PCI and more.

TEKID has been the Compliance service organization of choice for many international corporations, for its unique tri-factor expertise integrating Technical and Operations with Legal Compliance. From simple Red Flagging to full Compliance, TEKID Compliance programs are designed to facilitate understanding and implementation.
Red flagging compliance
Compliance audit
On-demand compliance

Monitoring

At TEKID, we understand that today’s most damaging security threats are not originating from malicious outsiders or malware but from trusted insiders - both malicious insiders and negligent insiders (60% of cyber-attacks being carried out by such insiders).

TEKID monitoring services rely on the world’s leading monitoring tools to: assess Internal User behaviors, Corporate digital footprint, Corporate digital risks and threats. TEKID agents further monitor ransomware activity, allowing for early detection and mitigation.
User & Endpoint Behavior Analysis monitoring & protection (UEBA)
Network and System monitoring & protection
Digital footprint monitoring

Forensic

TEKID Computer Forensics Lab, specialized in investigation and data recovery, has been created to bring light to internal and external corporate disputes. Our certified Computer Forensics examiners and investigators have been on the front line collaborating with corporations and with local and international authorities.

We examine digital media in a forensically sound manner identifying, preserving, recovering, analyzing and presenting facts and opinions on digital artefacts.
Data recovery & Backups
Computer Forensic Investigation
Digital Investigation

Consulting

Hiring and allocating resources can be time consuming and disruptive. In order to help our customers implement regulatory requirements and secure their assets, TEKID Consultants are specialized in Cyber Security, legal and Operations. Our team evaluates technology solutions and performs Security Audits.

Technology Solutions: we understand the strategic aspects of the implementation of new technology solutions in corporate business models. Some solutions need special precautions to be taken in terms of Cyber Security and Compliance before their actual implementation.
Cyber Security consultants
Compliance Consultants
General IT Consultants
Services based consulting

Crisis

TEKID Crisis management services were specifically designed to help react swiftly to Cyber Security threats and Legal processes implementation. Resources from each field are involved, allowing for a faster and more efficient assessment of the situation. As each crisis is different, it is by working together that TEKID can solve each Cyber Security crisis.

TEKID also understands local and international regulatory requirements for such events and provides smart and strategic legal advice. Our experts have experience in dealing with Ransomware, malware infections, brute force and DDoS attacks.

TEKID IS REACHABLE AT ANYTIME THROUGH OUR TICKETING SYSTEM AND OTHER COMMUNICATION CHANNELS. A RESPONSE TEAM CAN BE APPOINTED WITHIN MINUTES.
Traditional Crimes
Government investigations & down raid
Cyber-attacks
Red flagging compliance
Red flagging potential key gaps between, on the one hand, the current state of Cybersecurity and Data Privacy of the contemplated target (application, system, legal entity, etc.), or more largely a company’s operations (policies, procedures, processes, systems, infrastructure, organizational structure, strategy) and, on the other hand, the requirements of the applicable regulatory environment or contemplated standard; and determining the key recommendations as to the actions that should be taken, as far as Compliance is concerned.
Compliance audit
A 360° audit, (i) of company’s operational Compliance with the applicable standards/regulations, (ii) of the underlying strategy across all company main departments (through interviews), which will be a key tool for determining: the existing technical, operational and regulatory environment of the company; Where there are gaps between, on the one hand, the current state of Cybersecurity and Data compliance as to the contemplated operations, and more largely company’s operations worldwide (policies, procedures, processes, systems, infrastructure, organizational structure, strategy) and, on the other hand, the requirements of the applicable regulatory environment as to Cybersecurity and data (e.g., applicable Guidelines, related regulations, etc.) or contemplated standard; An Application System Landscape (ASL) with identified priorities (what the core needs and are as far as compliance of the company is concerned), further leading to dedicated and detailed compliance analysis per systems if required.
On-demand compliance
Providing companies with an outsourced compliance team (in-house or remotely) to overcome punctual compliance issues and achieve greater results in terms of efficiency, expertise and flexibility.
User & Endpoint Behavior Analysis monitoring & protection (UEBA)
Agent installation for targeted user’s devices, configuration based on documentation provided during IT Audit stage, Configuration tuning within first month. User activity monitoring 365*7*24. Real time event alerts, Response time within 2h during working day, Monthly reporting by email (Alerts, Screen snapshot, File & document activity, emails, User status, Network activity, Web activity, Instant messaging, Application usage, keystrokes).
Network and System monitoring & protection
OWASP attack prevention and zero-day vulnerability protection. Powerful threat intelligence with user-defined rules for business protection. Precise malicious request recognition and interception. HTTP and HTTPS access control (IP/URL/Geo-based blocking, anti-leech, backend and crawler prevention, etc.) as well as website stealth. Satisfying user experience with smart log query. Complete vulnerability scanning. Broad asset coverage and profiling, Botnet/malicious, process/anti-virus. Sensitive Content Auditing: PII (e.g., credit card numbers, SSNs), Vulnerability ranking based on CVSS, five severity levels customizable severity levels for recasting of risk. Correlation with exploit frameworks and filtering by exploitability and severity.
Digital footprint monitoring
Overall Security grading, Risk Factor grading (Application security, Network security, Endpoint security, Social engineering, Hacker Chatter, DNS Security, Leaked information, Cubit score, Patching cadence, IP reputation), Vulnerability search engine (IP attribution, Normalization of data, Elimination of noise), Data Collection (Sensor Crawling the entire internet, Vulnerability fingerprint, Emerging Threat collection.
Data recovery & Backups
Implementing processes of backing up data in case of a loss and setting up systems that allow that data recovery due to data loss. Backing up data requires copying and archiving computer data, so that it is accessible in case of data deletion or corruption. Data from an earlier time may only be recovered through forensics services.
Computer Forensic Investigation
Computer forensics investigators provide many services based on gathered digital information, from investigating computer systems and data in order to present information for legal cases to determining how an unauthorized user hacked into a system. A digital forensics examiner does many things in the course of these tasks - protects computer systems, recovers files (including those that were deleted or encrypted), analyzes data found on various disks, and provides reports, feedback.
Digital Investigation
Like Computer Forensic Investigation, such investigation puts forward business understanding to target the machines that should be investigated. Such as for a Cyber-Attack investigation, prior to understanding how the endpoint was affected, it should first be identified. Digital investigation is used to identify the pattern of an attack, a fraud, a criminal case or to identify potential malicious users in your network. It also includes the necessary interviews with suspects performed by our investigators, to confront digital artefacts against testimonies and uncover the truth.
Cyber Security consultants
Support our customers on various subjects, ranging from infrastructure management, data architecture, to web security, Security process design, organizational improvements, trainings, etc.
Compliance Consultants
Support our customers on various subjects such as compliance training, Cybersecurity and data compliance program design and implementation, international standards compliance program design and implementation, products and services cybersecurity and data related compliance assessment, risk assessments, Privacy by design concept, additional work forces to ongoing projects, data inventory / mapping, data processing registers, compliance monitoring program design, etc.
General IT Consultants
Support our customers on various subjects such as network and system administration, infrastructure management, data architecture, web development, etc.
Services based consulting
TEKID consultants also support our customers on a service-based approach to perform regular security audits, (penetration tests, vulnerability assessment), due diligence (SAPIN2, M&A audits, etc.), or other various projects (such as the release of a new system, innovation evaluation, IT transformation, etc.) or training courses.
Traditional Crimes
In a technology-oriented world, traditional crimes (such as fraud, embezzlement, theft, harassment) almost always leave a digital footprint that can be traced, collected and secured in order to stop, mitigate or punish them. TEKID supports its customers in uncovering and securing proof, stopping, mitigating and punishing such crime through investigation, interviews, advice on steps going forward, etc.
Government investigations & down raid
When facing a government investigation or down raid, everything must be carefully evaluated. Financial, operational and strategic stakes are high. TEKID not only provides mitigation plans on every level, but work closely with you until the end, we also provide mediation services with authorities through our experiences and network.
Cyber-attacks
As soon as a cyber-attack emerges, you need to consider, at first, the potential conflict of interest that may lie within resolving this issue internally. Eventually, this attack could lead to data theft or leakage, business disruption, steep financial consequences, public opinion negative impact, or even a national security threat (amongst others). You would wish your company to be supported and advised by third parties to better evaluate and act on the necessity of stopping the attack, restoring service, reducing financial and operational losses, investigating the origin and rolling out corrective plans, communicating with users and governments when needed. TEKID is always there to support you when in such a crisis.

Case Study

GLOBAL ENERGY PROVIDER
Security Test
  • Comprehensive report with summary of main discoveries and recommended action plan

As a French-based utility company, they wish a third-party to perform an in-depth penetration testing for on-premise application in order to reveal and expose vulnerabilities from target systems and to fix them.

GLOBAL EVENT ORGANIZER
Security Test
  • Comprehensive report with summary of main discoveries and recommended action plan
  • Compliance Report

As part of the Event Organizer’s acquisition process they wish to ensure the Security requirement of the platform by Vulnerability Assessment Penetration Test (VAPT), including the necessary code review with compliance to the China Cybersecurity Law (CSL).

HEALTHCARE
Security Test & Audit Review
  • Technical product and documentation review
  • Comprehensive report with summary of main discoveries and recommended action plan

The company was expecting to expand an Assistance Application from initially India market to Asia Pacific and wished to conduct an evaluation to the product quality focusing on security, infrastructure, data architecture, code review, scalability and duplicability.

INSURANCE INDUSTRY
Security Audit
  • Technical product and documentation review
  • Comprehensive report with summary of main discoveries and recommended action plan

The company was expecting to expand an Assistance Application from initially India market to Asia Pacific and wished to conduct an evaluation to the product quality focusing on security, infrastructure, data architecture, code review, scalability and duplicability.

HYDROLIC PARTS MANUFACTURER
Digital Forensics
  • Computer Forensics imaging
  • Data set storage

The company suspected there China branch office of conducting fraudulent side activities and wished to conduct a legally receivable Forensic Acquisition/Copy of all employees devices (30 Desktops and Laptops) as a safe guard and for future investigation if necessary.

CLOUD HOSTING PROVIDER
Crisis Management
  • Server decryption
  • Server patching

The company was infected by a newly developed ransomware, encrypting 74 virtual servers. TEKID was dispatched to investigate and mitigate the origin of the intrusion while handling the negotiations with the hackers in order to retrieve the decryption key.

备案号:沪ICP备19003830号
PSB Logo 沪公网安备 31010502005140号