Technology continues to evolve at a rapid pace as federal agencies adopt the latest and greatest to enable mission-critical functions. Whether developing leading-edge applications or building large-scale infrastructures, security plays a critical role in constructing systems that are resistant to cyber attacks. Security engineering integrates security into a system’s lifecycle from project initiation to decommissioning.

KCG is experienced in providing security engineering services that support stand-alone and large-scale Information Technology (IT) integration projects, supporting defense in depth strategies for large-scale security solutions and technology implementations, such as intrusion detection and prevention systems, security information event management solutions, and host-based security systems, to name a few. Our security engineers also support application development teams, providing expertise in the defense against application vulnerabilities commonly found in the Open Web Application Security Project (OWASP) Top 10 and the U.S. Department of Homeland Security Top 25 Common Weakness Enumeration list. KCG provides the following security engineering services:

• Technology Enablement Support
  • Security Product Evaluation Services
  • ArcSight Engineering Services
  • Host-based System Security Solutions
  • Data Leak Prevention
  • Encryption Solutions
• Systems Lifecycle Support
  • Threat Modeling
  • Secure Infrastructure and Application Design
  • Application Code Reviews
  • Vulnerability Assessments
  • Penetration Testing