Safety Detectives: Please share your company background, how you got started, and your mission.
Secmentis: Secmentis is a cybersecurity consultancy specializing in penetration testing, threat intelligence, and proactive defense for your company’s entire IT infrastructure (external or internal), strictly in line with industry-recognized standards. A few years after meeting at a world-renowned CS school, a group of friends and like-minded ethical hackers came together to start Secmentis to offer their unique skills to companies, by providing highly specialized cybersecurity services. Secmentis’ mission is to proactively protect your business, brand, and trade secrets with advanced penetration testing and red teaming operations.
SD: What is the main service your company offers?
Secmentis: At Secmentis we specialize in penetration testing from multiple perspectives, including but not limited to:
- External Network Penetration Testing – Public-facing IT infrastructure security testing
- Internal Network Penetration Testing – Internal-facing IT infrastructure security testing
- Web Application Penetration Testing – Custom-built web application/website security testing
- Mobile Application Penetration Testing – Custom-built Android + iOS mobile application security testing
- Social Engineering services – Social engineering attacks (e.g. simulated phishing, etc.)
During a penetration test, Secmentis penetration testers simulate real, authorized hacking attacks against your company’s public-facing or internal-facing IT infrastructure and assets (such as public websites or custom-built web applications, or internal portals or devices, etc.).
By using the latest methods, processes, and tools, also used by the attackers, we show companies where their vulnerabilities are and how attackers could exploit them to gain unauthorized access to sensitive information, such as customer information, trade secrets, internal processes, and more.
SD: What is something unique that helps you stay ahead of your competition?
Secmentis: At Secmentis we believe that having the right people who have a deep passion for their work is essential. As the saying goes: “A players attract A players. B players attract C players.” We try to hire the most talented and dedicated people we can, who also share our values and work ethic. Our team members at Secmentis have similar backgrounds and a deep passion, understanding, and expertise in cybersecurity.
Secmentis is trusted by global organizations worldwide, ranging from startups to large enterprises from a wide range of industry sectors ranging from automotive, banking, financial services, insurance, energy/oil/gas, healthcare, to shipping/transportation/logistics.
SD: What do you think are the worst cyberthreats today?
Secmentis: In our view, the worst cyberthreats originate from (a) unknown vulnerabilities, meaning 0-day vulnerabilities in software or devices—and this is because advanced attackers can identify these vulnerabilities ahead of vendors and the targeted companies, and (b) people, this is because of potential human errors, misconfigurations, various kinds of social engineering attacks targeted at employees, etc. which can help attackers gain unauthorized access to company information or resources. The proliferation of cyberattacks including ransomware attacks, supply chain attacks, cryptomining attacks, and more, is due to attackers exploiting these attack vectors.