The SLED Cybersecurity Priorities Report by GuardsArm Inc.

GuardsArm Inc helped us pinpoint the right assets to monitor and optimized our systems for peak performance. Now, we only receive alerts for genuine threats, allowing my team to focus more on achieving their goals.

We've relied on GuardsArm Inc for quarterly vulnerability assessments for several years now. While our policy typically involves switching vendors every few years, the outstanding service from GuardsArm has left us with no reason to look elsewhere. Their reports are detailed and focus on prioritizing actionable remediation advice.

GuardsArm Inc performed a web application penetration test on several of our edge applications. They uncovered multiple configuration vulnerabilities, including an insecure direct object reference (IDOR). They promptly alerted us and provided expert guidance on resolving the issue. Their knowledgeable engineers offered step-by-step support and conducted retests to confirm the critical vulnerability was successfully addressed.

Wi-Fi—definitely a tricky beast to handle. We brought in GuardsArm Inc to assess the wireless networks we provide for employees and customers accessing our store services. Their team arrived onsite, setting up a "toolkit" with antennas sprouting everywhere. They successfully established a rogue access point that mimicked our legitimate ones, tricking users into connecting. GuardsArm conducted an evil twin attack, intercepting and injecting packets into the network stream between user devices and systems. They then provided detailed findings to help us educate users and improve their behavior for better security.

GuardsArm Inc conducted an external penetration test on our networks and identified critical vulnerabilities. Before attempting exploitation, they informed us about the potential host responses. Their twice-daily updates were incredibly helpful for me and my team. Additionally, they provided excellent remedial guidance that enabled us to swiftly address and fix the vulnerabilities.

Our company outsources web development, so we asked GuardsArm Inc to review our source code and assess it for insecure API calls. The findings were eye-opening. It was unsettling to discover that the developer we hired had left so many security flaws in our code. Having the GuardsArm team provide us and our partner with clear, actionable recommendations to address these issues brought us much-needed peace of mind.

GuardsArm Inc launched a phishing campaign against our employees by replicating a realistic payroll website used within our company. Their team successfully captured the credentials of several IT administrators. With domain administrator access, they managed to compromise our entire domain within just 20 minutes of starting the campaign. This exercise allowed us to demonstrate to leadership the critical importance of implementing stronger user account practices, multi-factor authentication (MFA), and enhanced user security awareness training, helping us secure the necessary budget for annual IT security improvements.

GuardsArm Inc conducted an internal penetration test on our organization using one of our legacy network protocols. They successfully gained administrative access and deployed malicious code across our network. If this had been a real attack, the consequences could have been catastrophic.

GuardsArm Inc's assessments give us crucial visibility into our third-party risk exposure. With over 40 vendors to manage, we lack the internal resources to conduct yearly assessments. These insights are invaluable, helping us make informed decisions when selecting and managing our partnerships.

GuardsArm Inc has been crucial to the success of our SOC operations. Without their flexibility, expertise, and prompt responses, our small SOC team wouldn't be able to function effectively. GuardsArm consistently engages with us at both operational and executive levels, always seeking innovative solutions. They don’t just think outside the box—they deliver tangible results.