cyber security services

We are a team of cyber security professionals. Highest qualification, flexibility and reliability are our main distinctions:

- Experience in information security

- International security certificates

- Absolute legitimacy and confidentiality

- Highest customization and flexibility

- Highest quality

 

We have wide and deep experience and competence in corporate security:

- Security Assessment: IT Audits, Information Security Audits, pen-testing and security review of source code.

- Managed compliance with GDPR, ISO 27001, PCI DSS, HIPAA, ITIL, ISF, NIST, COBIT, etc.

- Application Security and Software Engineering: Secure Software Development Lifecycle (SDLC) management and Security DevOps of specific software products.

- Trainings and workshops on Secure Software Development (SDLC, Secure DevOps). Personnel Security Awareness and Behavior Management. People-Centric Security.

- Security Operations Center (SOC) Implementation and SOC as a Service, including: technical vulnerability management, security event monitoring, security incident response and investigations, etc.

- Enterprise Risk Management and IT-related Risk Management.

- Business Continuity Management and Disaster Recovery Planning.

- Physical security and other security areas.

 

 
$1,000+
 
$25 - $49 / hr
 
10 - 49
 Founded
2015
Show all +
Kyiv, Ukraine
headquarters

Portfolio

Key clients: 

Our clients are e-commerce, industrial, pharmaceutical, telecommunication, retail, IT and insurance companies, as well as banks and governmental organizations. Any company that values its information, online services, compliance, privacy and business continuity is our potential client.

Reviews

Sort by

Cybersecurity Services for Migration Software Company

"H-X Technologies has proper security practices."

Quality: 
5.0
Schedule: 
5.0
Cost: 
4.0
Willing to refer: 
5.0
The Project
 
Less than $10,000
 
Jan. - Apr. 2019
Project summary: 

H-X Technologies did a security audit of the company’s cloud infrastructure as well as an external penetration test, identifying all security gaps and providing a report after which they did another test round.

The Reviewer
 
11-50 Employees
 
Ukraine
Victoria Pogrebniak
IT Manager, FluentPro
 
Verified
The Review
Feedback summary: 

The project team found several critical vulnerabilities in the system in the span of three months and provided two kinds of reports based on their findings. Through weekly status reports and overall effective communication, H-X Technologies delivered on time and did an extensive and thorough job.

A Clutch analyst personally interviewed this client over the phone. Below is an edited transcript.

BACKGROUND

Introduce your business and what you do there.

I’m an IT project manager for FluentPro. Our main office is located in Redmond, Washington, but we have a customer care team in Ukraine as well as a development team and other resources.

OPPORTUNITY / CHALLENGE

What challenge were you trying to address with H-X Technologies?

We have cloud-based applications and provide cloud services for project and portfolio management to customers working with Microsoft Project. One of our goals was to find a third-party enterprise that could do a penetration testing audit for us. Our cloud service provider is G Suite, and we identified H-X Technologies as an external provider for a security audit and penetration test for our service.

SOLUTION

What was the scope of their involvement?

H-X Technologies conducted a security audit of our cloud infrastructure. This included an analysis of the kinds of security gaps we had on our cloud service and an external penetration testing of our application. Specifically, it was gray-box penetration testing. We provided them access to our cloud platform but without any login credentials or other details. We wanted to see how hackers from the outside world could enter our system.

I believe they tested the application for one month and provided us with a penetration test report with recommendations on what we should improve in our company and solutions. After some research and after following their recommendations, we mitigated the high-risk exposures and relaunched the website. They performed another brute-force and penetration test after we took those mitigation measures, and worked according to OWASP 10.

How did you come to work with H-X Technologies?

I assessed different providers in Ukraine and H-X Technologies had very good reviews from other companies. They also had a great price and quality according to those reviews. We had a call with them, and they satisfied our requirements for the basic security tests we needed.

How much have you invested with them?

We invested $4,000 on this project.

What is the status of this engagement?

The collaboration lasted for three months and ended six months ago, around April 2019. There was a pre-security assessment, the testing itself, and a retesting after following their recommendations.

RESULTS & FEEDBACK

What evidence can you share that demonstrates the impact of the engagement?

H-X Technologies was contracted for three months to look for various kinds of vulnerabilities, according to OWASP 10. In terms of success, they found vulnerabilities that were critical for our project. Every security company has its own approach for security testing, and we couldn’t know what kind of vulnerabilities H-X Technologies would find, so we didn’t track exact metrics.

How did H-X Technologies perform from a project management standpoint?

Project management was handled well. They sent us project status reports once a week and we always got effective communication from their side. They also sent us two kinds of reports that were agreed upon in the contract.

What did you find most impressive about them?

H-X Technologies has proper security practices. We checked a lot of things following the security assessment on our side as well and found the same vulnerabilities. Overall, H-X Technologies did an extensive assessment. They also provided an internal report for our company, along with a report we could show customers without confidential information around our vulnerabilities.

Are there any areas they could improve?

I haven’t dealt with other security companies, so I don’t have a something to H-X Technologies with. We had a really good experience.

Do you have any advice for future clients of theirs?

I’d definitely recommend them to others, and we plan to use some of their services in the future for an ISO 27001 certification and other security audits.

5.0
Overall Score
  • 5.0 Scheduling
    ON TIME / DEADLINES
  • 4.0 Cost
    Value / within estimates
    I believe we found some cheaper companies, but it’s difficult for me to compare their quality to what H-X Technologies can do.
  • 5.0 Quality
    Service & deliverables
  • 5.0 NPS
    Willing to refer