The new era of transferring data.
Live webinar with Max Schrems.
System & Network Scanning
Find vulnerabilities in your entire infrastructure.
Web Application Scanning
Find vulnerabilities in your web apps and APIs.
Phishing & Awareness Training
Increase resilience against social engineering.
Efficient and secure in the cloud.
Installed in your infra with local storage.
System & Network Scanning
Systems, IoT, OT, SCADA etc.
Web App Scanning
All web apps and APIs.
Build your human firewall.
Sales Director India & SAARC
+91 8800-67 77 99
Hi! My name is Alok and I'm your local representative in India. Looking for a cyber security solution and vulnerability management? Let's talk!
Sales Director Southeast Asia
+60 19 434 2727
Hi! My name is Ahmad Faurani and I'm your local representative in Malaysia. Looking for a cyber security solution and vulnerability management? Let's talk!
Key Account Manager, Finland
+46 8-550 05 582
Hei! Nimeni on Cristian ja olen paikallinen edustajasi Suomessa. Etsitkö tietoturvaratkaisua ja haavoittuvuuksien hallintaa? Puhutaan!
Victor Bunge Meyer
Key Account Manager, Sverige
+46 08-550 05 582
Välkommen till Holm Security i Sverige! Jag heter Victor och är din lokala kontakt. Kontakta mig om du vill veta mera om vår platform för sårbarhetsanalyser.
Account Manager, Benelux
+31-20-238 63 94
Mijn naam is Beth Murrell en ik ben uw lokale vertegenwoordiger in Nederland, België en Luxemburg. Op zoek naar een cyberveiligheidsoplossing en kwetsbaarheidsbeheer? Laten we praten!
Key Account Manager, Norge
+46 8-550 05 582
Velkommen til Holm Security i Norge! Jeg heter Jens og er din lokale kontaktperson.Kontakt meg hvis du vil vite mer om vår plattform for sårbarhetsanalyser.
Country Manager Denmark
+45 31 12 10 05
Velkommen til Holm Security i Danmark! Mit navn er Ronnie og jeg er din lokale kontaktperson. Kontakt mig, hvis du vil vide mere om vores sårbarhedsanalyseplatform.
November 26, 2018
More than 70% of all organizations outsource their IT to a greater or lesser extent and it’s continuously increasing. Outsourcing gives many advantages, but also new challenges for the IT organization. One challenge is the security assurance in the delivered service. Many times, the function is in focus, and the requirement regarding security is secondary. However, this trend is changing, and there are many effective tools to take control of your security, even if you just order IT from an organization.
A common misconception is that outsourcing means that the liability for, as an example, personal data in relation to GDPR is wholly or partly in the outsourcing partner's responsibility. But the legal responsibility is still yours, in being the owner of the data. Whether you outsource or not, you have the same responsibility towards authorities, laws, and recommendations. If you would leak personal data as a result of neglected security, it is your organization, not your partner, who will be held responsible.
Today a part of the outsourcing partner's offer is an SLA that describes the level of service and security to be delivered. But how do you ensure that the SLA is adhered to by your partner, as the SLA does not imply any warranty? An SLA should be considered as a guideline for how your partner should work – and not a guarantee.
A rule of thumb in IT security is not to evaluate your own security. This should be wholly or partly made by an independent party or product, or a combination of the two. Research indicates that those who evaluate their own IT security, without the help of independent parties or tools, do not get the complete comprehensive analysis and they miss out on important details. One common example is that systems that you think are safe, or systems that will be retired, are skipped. These systems might just be the ones with critical vulnerabilities today or in a near future.
Automatic and continuous vulnerability assessment ensures good basic security in your outsourced IT environment. The vulnerability assessment provides you with an objective overview, and also provides effective methods for communicating information about vulnerabilities, both current and over time. The reports are adapted for both non-technical and technical savvy. For example, the person who is responsible for the personal data, the Data Protection Officer (DPO), can get a tailored report automatically once a month, that clearly states how vulnerable the system holding personal data is.
In Holm Security's platform, you can work together with your outsourcing partner. You can both access the Security Center (our control panel) and be able to prioritize and discuss vulnerabilities. The platform then becomes a tool that promotes cooperation with your outsourcing partner and enables you to work more efficiently with your IT security.