Contact us for a free consultation.

Learn more

Security Testing

We provide thorough assessments of all types of applications, networks, and infrastructure with guidance for improving your security posture.

Strategic Consulting

Our team of Security Experts provide industry-leading Risk Assessment, Project Management, and InfoSec Program and Policy Development services.

Compliance and PCI

Gap assessment and audit services with a focus on real security.  Our experienced staff can help you reach your compliance goals in a manner best suited to your unique environment.


We offer engaging and interactive security awareness and technical training, both online and instructor-led.

From the Blog

Tony Fulda

Tony Fulda

February 12, 2015

Views: 156

Recently, the PCI Security Standards Council provided QSAs with a preview of some upcoming changes to the Data Security Standard (DSS) regarding the use of Secure Socket Layer v 3.0 (SSL) and its suitability for protection of payment card data; since then our QSA team has been awaiting an official pronouncement to clarify the scope and impact of the proposed changes.

Tony Fulda

Tony Fulda

February 04, 2015

Views: 92

A good assessment should take the entirety of the risk environment into consideration (think about supporting systems, vendor management, emerging malware, etc.) and not focus narrowly on one type of data, environment, or system.  Bottom line: Use compliance to steer your IT direction, but always check your blind spots.

Steve Olson

Steve Olson

February 04, 2015

Views: 68

Let’s get something straight – IT security is like fighting a war.  A defensive war.  A war of attrition.  Really evil bad guys, really nasty consequences.  And, like in war, soldiers might be on the front for many months with no sign of activity followed by huge battles overnight.  Some get no respite.

And in this IT security war – we are fighting without a strategy!

News & Events

Credits: Creative Arc
© Copyright 2015 AppSec Consulting, All Rights Reserved