b-sec - Protecting Australia's Information Future

Log in

To access your b-sec customer resources, please sign in below.

Click here to register!

Register online to download Incident Analyser or receive your trial key.

Incident Analyser

b-sec Incident Analyser

Know what is happening on your Cisco Pix or Checkpoint firewall in real time.


	Experience, knowledge and quality are the key attributes which have made b-sec a leading provider of specialty information security consulting services in Australia. With clients including most of Australia’s large financial institutions, government agencies, legal firms, resource companies, utilities and other “top name” companies, b-sec has the knowledge and experience to be able to assist your organisation in addressing the challenges of information security. Information security covers a broad spectrum of technologies and fields of expertise. b-sec is uniquely placed in the Australian market to address each of these, leveraging the skills and expertise of three specialised practices: Strategic Consulting, Technical Consulting and Application Security Consulting. Specialist practices guarantee our clients that the consultants performing the work are experts in their specialised fields, and that the processes and methods used are industry-leading. Concurrently, the advantages of working with a provider who has the end to end capabilities required to effectively address information security related risks are brought to bear.

Security Specialists


For information security to be addressed in a truly effective manner, a holistic, top-down approach is required. While this is generally understood, translating the theory into practice can prove to be highly challenging. With a detailed knowledge of business processes and management skills, b-sec Consultants within this practice are ideally positioned to transition organisations to the required level of maturity. Taking a pragmatic approach to complex issues and leveraging the resources and experience of b-sec consulting, we deliver results to our clients where others have failed. Whether addressing complex governance requirements, or issues related to roles and responsibilities and risk, our extensive first hand experience ensures effective outcomes with every engagement.	From the development of application security frameworks and the implementation of Secure Software Development Lifecycles, through to code reviews and penetration testing the b-sec Application Security Practice is recognised as a global leader in this highly specialised field. Consultants in this practice are not only security experts, but also have extensive software development experience and knowledge. This detailed first hand understanding of application environments, coding methods and related issues, translate to consistently successful client outcomes.	The most “traditional” of the three practices, Technical Consulting focuses on the security related aspects of the IT infrastructure. Consultants in this practice are typically experienced technical experts in specific technologies, who have specialised in security and risk management associated with that technology. The vendor independence derived from not being a systems integrator or product vendor gives b-sec clients complete confidence in the knowledge that our consultants are looking for the best project outcomes and not the highest profit margins associated with selling products.
Services offered by the Strategic consulting practice include: Identity Management Strategies Vulnerability Management Strategies Incident Response Planning Roles and Responsibilities Planning Operational Service Delivery Planning Information Protection Strategies Business Security Risk Assessments Policy Development (inc. ISO17799 and IS18) Policy gap analysis Security Standards Development Standards gap analysis Review and development of procedures	Application Security Frameworks: Application Security Profiling; Application Security Design Specifications; Deployment & Release Methodologies; Maintenance & Change Management Procedures; Application Security Policies, Standards and Guidelines. Application Security Testing: Code Reviews and Risk Assessments Penetration Tests Application Security Training: Business and Management awareness training Developer awareness training In depth application security training for developers	Security Reviews and Risk Assessments: Network/Firewall/IDS Server Directory Services Infrastructure Change Management Penetration testing Evaluation and Design: Evaluation of products and solutions Design of Architectures Detailed design services Advice on solution options