Rates on larger engagements are even lower - just contact us using the form above and we will confirm scope information and send you a quote. We use only qualified security engineers with industry recognized certifications (see below) and conduct all types of penetration testing, including network layer, application layer, internal and external tests. References available.
Here is a sample external report Here is a sample internal report
About Link Mountain Link Mountain’s business model includes subcontracting of penetration testing services to certified QSA and ASV companies. Link Mountain has conducted more than 50 penetration tests for PCI compliance for its QSA and ASV clients, in addition to testing performed directly for end clients. Link Mountain has extensive experience with PCI penetration testing, including facilitating and coordinating communication and deliverables with QSA companies engaged in audit.
In addition to penetration testing services, Link Mountain regularly performs secure code reviews, secure code training, end to end PCI compliance consulting and managed security services encompassing the entire breadth of PCI-DSS compliance on behalf of its QSA and ASV business partners and end clients.
Link Mountain penetration testing experience does not end with PCI related testing. Link Mountain has tested and subsequently compromised systems housing national law enforcement data, systems requiring HIPPA compliance, and numerous private, municipal, county and state government systems.
All Link Mountain penetration tests are conducted by certified security professionals. PCI-DSS does not specify which certifications are appropriate for penetration testing. In fact, PCI-DSS does not specify that any certification is required. Link Mountain requires its penetration testers to hold at least one of the following industry recognized professional certifications: CISSP, GSEC, GWAPT, GPEN or CEH. In addition, Link Mountain requires its penetration testers to have real world web development experience in at least two base languages, frameworks and platforms. All Link Mountain penetration testers are US citizens with background checks and confidentiality agreements.
Link Mountain achieves cost reduction in penetration testing through efficient business process, without compromising on test coverage or utilizing under qualified personnel. Our business processes are designed to assure early identification of all pertinent information, smooth process flow through the testing engagement, clear, extensive and timely communication with clients, and detailed, timely finding reports that foster a smooth remediation process. Our business process drastically reduces mistakes, rework, and client misconceptions. Our business process efficiency reduces costs to a level that allows several of our QSA and ASV companies to rely on us exclusively for their penetration testing offerings, while leaving them confident that their client’s security needs are well served.
Link Mountain will provide references on request.
Services offered by LinkMountain:
Information Security Services
Code Reviews
Vulnerability testing
Penetration testing
Web application firewall solutions
Central Logging and reporting solutions
Comprehensive, low budget PCI-DSS compliance solutions, including
Low cost compliant web application firewall solutions
Low cost compliant file integrety, audit trail and central logging solutions
Budget friendly and compliant encryption key management
Low cost employee and developer training
Policy development guidance
Creative, cost effective and comprehensive code review process
If you are looking at large outlays for PCI-DSS mandates and don't know how you are going to find the budget for it, use our inquiry form above and drop us a short message. In most cases we can sharply reduce your planned outlay and guarantee compliance.
PCI Compliance can be very expensive, but you may be surprised at how much of that expense can be avoided. The first consultation is free, so use the form above and contact us today before you spend money on the wrong products or on solutions you may not actually need.
