Stratum Security is an information security consulting company headquartered in the Washington DC Metro area. Founded in 2005, we provide services to clients world wide. Our list of clients range from large multi-national enterprises to growing start-ups.
Develop A Program
We help organizations both large and small develop, improve and mature their security programs.
Software has become the lifeblood of the modern enterprise. Stratum has assessed software that powers everything from online banking, mobile devices, social networks to factory assembly floors. Trusting your applications requires an objective, critical, and in-depth security review.
High quality information security assessment services.
Each of Stratum’s offerings assesses the security posture of key technology layers within an organization’s environment. Each engagement is delivered by a team of experienced security professionals that leverage cutting edge technology and a proven methodology.Read More
Managed Application Security Testing
A core expertise at Stratum is application security testing. Whether you have a small number of applications that you want assessed regularly, or hundreds of applications that require differing levels of testing, Stratum will work with you to define a testing methodology aligned with your requirements, and schedule that fits your risk tolerance and budget.Read More
Stratum's Data Exfiltration Tool
XFIL is a Stratum patented data exfiltration tool that simulates the testing for over 260+ ways that data could leave your network in the event an internal system is compromised. It essentially simulates an APT and automates the testing of your security controls such as egress filtering, DLP and MSP. It presents an interesting approach to bring the simulated attack full circle and provides valuable insight on your ability to detect APTs and any breach that has gotten past your perimeter controls.Read More
Read up on the latest Stratum Security company news, our take on current information security events, and more.
- 11 Sep
Read a recent news article about ...Read More
- 27 Apr
I just published a new ...Read More
- 3 Dec
Most cloud security blog posts, news ...Read More