About
Steady State Security offers a small niche set of skills to assist clients with their unique cyber security needs. We focus solely on cyber security - this is all we do. Our nimble size gives us the ability to adapt quickly to industry trends and latest security threats. We do the homework so you can focus on your business.
Recently formed after over a decade securing DOD IT security systems, we noticed a market opportunity for small to medium sized commercial clients.
We bring government-level security experience to your information security program and provide actionable recommendations depending on your program’s maturity level. Regardless of your business, your intellectual property and reputation must be protected. We can help.
Some of our specialties:
Readiness/gap analysis against the following frameworks: PCI 3.2 / 4.0 preparedness, NIST CSF, SOC 2, NY DFS (23 NYCRR Part 500).
We can flex to any framework that your business requires (ISO, GDPR, etc)
Policy creation specialists — framed around your specific framework(s) and business objectives
We can provide a full Information Security Management Program suite of policies, or audit your current policies
Security Awareness training
We can perform live trainings or build out a custom yearly campaign tailored specifically to your business and audience that can be automated for all onboarding
Phishing campaigns — this is the top threat vector, how does your company react to a custom-built phishing campaign designed to simulate an actual threat actor focused on your business?
Vulnerability scanning (internal and external scanning) of your IT assets and web presence
Internal/External penetration testing
Onsite WiFi and/or remote device shipment can be coordinated
Onsite/Offsite social engineering experts
Public web application vulnerability testing
Configuration hardening from on-prem based hardware, to AWS WAF and VPC hardening.
ABOUT | CONTACT | SERVICES | CLIENT LOGIN | NEWS