SkySiege Cloud Penetration Testing
SkySiege is a cutting edge Cloud Penetration Testing system for Amazon Web Services, able to globally scan and report vulnerabilities the same day.
With years of working in financial technology, SkySiege reports have been integrated into ISO 27001 Information Security Management Systems for fintechs and other regulated industries across the world. Our reports provide not just the 'Check' but also the 'Do'.
“SkySiege is just easier to deal with than other systems. I just forward the reports onto my stakeholders without any extra work”
“No other supplier provides as thorough a review so quickly”
“Our development team weren't able to deliver a testing candidate until the day before release. SkySiege tested that same day and we got it over the line”
“I've used SkySiege to handle testing at multiple clients. The reports are best in class meaning I can use them anywhere”
Custom Built for Regulated Environments & ISO 27001
In addition to industry standard security patterns, SkySiege includes its own checks based on years of consulting experience in financial services. This includes networking analysis, scalability, tag management, service selection and more.
SkySiege's reports utilise ISO 27001 terminology and references. Our continuous testing service meets the requirement for Management of Technical Vulnerabilities Annex A.12.6.1 providing the fastest handling of vulnerabilities on the market.
SkySiege is a full service solution delivering the practical advice you need alongside the governance you require.
Best in Class Heritage
SkySiege's predecessors were built to scan and evaluate issues in the world's most complex and sensitive environments. Global Banks, Telecommunications & International Blue Chips - SkySiege is the result of over a decade of consultancy in Cloud Security.
All Regions, All Services
SkySiege has no limitations. By default SkySiege will scan every AWS service and region available. SkySiege leaves no gap untouched evaluating every policy, resource and configuration in your targeted accounts.
If there's a problem SkySiege will find it and immediately report back telling you where and what it is.
Iconically Simple
SkySiege does not require a full submission describing your services or your account. It does not need access to your code nor does it need any accommodation, development and services can continue during testing. All SkySiege requires for its standard scan is Read Only access to your AWS account. Anything that you don't want SkySiege to see can be blocked by your own policies on your own terms, SkySiege will work just fine.
Grant SkySiege the access you want it to have, notify us and you'll have your report the same day.
Pricing
Three options covering a single service, your whole estate or continuous support
Single Account Penetration Test
Penetration Testing for a single account
- Report delivered Same Day
- All Regions
- All Services
- Recommended Remediations
Estate Wide Penetration Tests
A full review of all your accounts
- Per Account Reports
- Estate Wide Report and Metrics
- All Regions & Services
- Per Account Remediation Recommendations
- Recommended Architectural Patterns
Continuous Testing & Monitoring
Continuous organisation wide testing & monitoring
- CI/CD Integration
- Regular Scanning
- Targeted Resources per build
- Reports Automatically Emailed
- Continuous Security Support
- Reports built to ISO 27001 Standards & Terminology
- CSV & JSON exports for data and findings
- API for integration with ISMS
