ESBILGI Technologies, which set out to provide professional support to the information security sector in Turkey, provides strategic cyber security consultancy and security training services to organizations. Our goal is to be the leading independent technology company in the field of cyber security in Turkey. ESBİLGİ, which is an institution that pioneers R&D studies by using the most up-to-date technologies with its expert staff, offers cyber security and technology services all over Turkey.

image

ISO/IEC 27001:2013
Information Security Management System.

image

ISO/IEC 9001: 2015
Quality Management System

image

ISO/IEC 27701:2019
Personal Data Management System

Penetration Tests

TSE, BRSA, ISO/IEC 27001:2017, ISAE 3402, NIST, PCI DSS, SoX/Cobit, SAS 70 compliant reporting and standards.
TSE certified penetration test of all services on the server and network device systems to be audited according to Esbil Information Security Audit techniques to meet OWASP, OSSTMM standards.

Manual vulnerability analysis and penetration tests of all running services, software and protocols detected such as HTTP, DNS, SMTP, POP3, FTP, IMAP, TELNET, SSH, SSL etc. Detection of all configuration errors and deficiencies that can be detected remotely and from the local network.
Manual counter-analysis of web-based software, connected databases against all kinds of web-based attack techniques and Esbil Information Security Audit techniques to meet OWASP, OSSTMM, BDDK, TSE standards.

Manual testing of many techniques such as authentication, session spoofing, character filtering, parameter manipulation, cookie manipulation, etc. including CSS, XSS, SQL Injection, CSRF on the website with both a normal visitor and other user rights.
Manual checking of all user- and server-side weaknesses related to the system and databases, including rights abuse with different user rights.

ISO27001 Information Security Management Consultancy

ISO 27001 Information Security Management System (ISMS) is a worldwide standard that every organization can implement. Thousands of organizations that meet the standard have been awarded ISO certification. The document is spreading rapidly in Turkey as it is all over the world and has been made compulsory for telecom companies by the Telecommunications Authority. With our experienced staff, ESBILGI prepares your company for the ISO 27001 certification audit by implementing the entire ISMS processes with you through ISO 27001 consultancy service. This service starts with the determination of the scope document and ends with the company receiving the certificate.

KVKK Personal Data Protection Law Consultancy

Pursuant to the Law No. 6698 on the Protection of Personal Data (KVKK), it covers the technical and administrative measures that data controllers must take in order to prevent unlawful processing of personal data and unlawful access to personal data and to ensure the protection of personal data. Within the scope of the “Law on the Protection of Personal Data” published in the Official Gazette dated 07 April 2016 and numbered 29677, we, as ESBILGI, carry out Consultancy Activities in accordance with ISO 27001 Standard and GDPR (General Data Protection Regulation) with our experience in the protection of your Personal Data related to your organization, taking into account the Legislation and International standards.

Network Security Products

In the field of Cyber Security, the positioning of products suitable for the netoworks of companies is realized. In the networks of our customers, the most suitable products are selected for our customers at the end of the process in which the processes are started by performing gap analysis and the result of the analysis is interpreted and continued.

Within our company, DLP, NAC, Firewall, Firewall, PAM, AV, Sandbox, 2FA etc. products and software are supplied and installed, taking into account the budget of our customers.

Information and Communication Security Guide Compliance and Audit Services

Esmer information technologies is a TSE accredited audit firm. TS-004

Within the Information and Communication Security Guide compliance consultancy offered by Esbilgi, the first of the works to be carried out in compliance with the guide in question;
– Determination of asset groups,
– Determining the criticality of asset groups,
– Current situation and gap analysis,
– Consultancy Services and Audits are provided on the preparation of the Guidelines implementation roadmap.