PENSPY Elevating Customer Service.
0%
Close Preloader Screen

Phone Number

0212 123 45 67



Navigation

Location

New York

3909 Forest Avenue
10021 New York
(123)-456-789
info@office.com

San Francisco

3909 Forest Avenue
10021 New York
(123)-456-789
info@office.com

PENSPY PROTECTION

Website Security

Our dedicated CISA certified cyber security experts adhere to the industry standard NIST framework and a corresponding risk mitigation toolset to ensure that your website is compliant and secured by those standards.

Learn More

PENSPY GUIDELINES

NIST SP. 800-44 / 800-53

Our primary operating framework adheres to the National Institute of Standards and Technology Special Publication 800-44 v2 (which outlines best practices for securing web server and web-based applications) and was built around the SP 800-53 controls & monitoring best practices as they relate to Detecting, Responding, Responding to, and Recovering From critical threats & vulnerabilities.

Our platform operates at the application layer, irrespective of the physical infrastructure, ensuring a consistent and scaleable security framework across our clientbase.

PENSPY ANALYTICS

Threats & Vulnerabilities Catalog

We've partnered with and integrated in to our platform the largest threats & vulnerabilities database in the world, ensuring that our AI is instantly aware of the most recent threats and vulnerabilities, preserving your website's risk profile.

Known Vulnerabilities

3rd Party Apps Cataloged

Vulnerable 3rd Party Apps

Vulnerable Design Themes

PENSPY ANALYTICS

Vulnerabilities Breakdown

95% of Vulnerabilities are discovered to be a result of 3rd party theme design and 3rd party application integrations. The Penspy Threats and Vulnerabilities detection focuses primarily on these core areas.

%

3rd Party Apps

Plugins, API integration, and Widgetized Apps

%

Design Themes

3rd Party Non-Builder Framework Themes

Why do you focus on 3rd party apps and themes
Our experience and analytical research has shown that the vast majority of threats and vulnerabilities to your website originate from the 3rd party apps and themes our customers integrate in to their websites to extend their functionality. The remainder of threats originate from web server vulnerabilities which are mitigated by your website hosting provider
What is a 3rd party app?

A 3rd party app or plugin is a code-base developed by 3rd party companies that offer extended functionality to your website.  Most companies providing these integrations ensure that vulnerabilities are patched but many either disregard those vulnerabilities or are late to patching them leaving your website at risk.

What is a 3rd party theme?
Often times website owners will choose to start with a predesigned website theme and customize it to their requirements. Although this saves A LOT of time in development, those 3rd party designs may integrate vulnerable code leaving your website at risk.

DEDICATED THREAT MONITORING AND MITIGATION

Website Cyber Secuirty Services

As cyber security threats grow, effective website security, risk management, and fault restoration has become the most important concern to business owners with regards to their websites.  Our dedicated CISA certified cyber security experts adhere to the industry standard NIST framework and a corresponding risk mitigation toolset to ensure that your website is compliant and secured by those standards.  We provide weekly reports detailing risks identified, mitigation measures taken, and security measures employed to ensure your website is protected by industry security standards.

Security Plus

$19/ mo

Let's Go!

Basic WAF Firewall

Basic Malware Scanning

Code Vulnerability Scanning

Monthly Threat Detection Reports

Security Premium

$59/ mo
Let's Go!

Realtime WAF Firewall Management

Realtime Malware Scanning

Code Vulnerability Scanning

Monthly Threat & Remediation Reports

Website & SSL Uptime Monitoring

Nightly Backup & Emergency Restoration

Brute Force Hack Protection & Blocking

Login Security (2FA & RECAPTCHA)

Realtime Managed IP Blocking

Intrusion Detection & Blocking

FREQUENT QUESTION

What is Cyber-Security?
Cyber security is all about risk mitigation.  As cyber risks change and evolve, implementing a framework that tracks and informs mitigation practices is the best defense against those risks. The Penspy team adheres to the industry standard NIST framework and employs those tools certified by that standard to mitigate the risks that threaten our customers’ corporate website presence and their data.
What is the NIST Cyber-Security Framework?
NIST is the National Institute of Standards and Technology at the U.S. Department of Commerce. The NIST Cybersecurity Framework helps businesses of all sizes better understand, manage, and reduce their cybersecurity risk and protect their networks and data. The Framework is voluntary.
How does Cyber-Security Apply to Websites?

Cyber-Security threat detection and mitigation applies to any corporate IT infrastructure which includes public endpoints like a company’s corporate website. The Cyber-Security NIST framework contains articles specific to website security best practices and mitigation standards (Special Publication 800-44) and we apply those best practices and mitigation standards to our customers’ corporate website infrastructure. This includes user access management, code vulnerability scanning, hack protection tools, backup & restoration procedures, and much more.

What AI-Guided Tools Do You Use to Secure Our Website?
We employ AI-Guided interval scanning tools that reference always up to date databases of known threats and vulnerabilities while scanning our customers’ websites to report back on any potential threats. Our tools offer mitigation recommendations for any vulnerabilities reported and either implement those recommendations automatically or alert a member of our staff to implement those recommendations.