Business digitalization

Joonatan Henriksson

Joonatan Henriksson

Head of Digital Business

Customer data collection is in the core of the digital services and the whole digital platform economy. It provides great competitive advantage, but creates concerns with privacy and security. Systems that process data must be reliable, so that business continuity can be ensured during and after the digital transformation.

Cybersecurity should not in any circumstances slow down the rapid digital business development or obstruct a smooth customer experience, vice versa. We ensure reliable digital transformation, with the terms given by your business.

Read more about our services for digital business or contact us for help!

Services

Nixu Cyber Defense Center

At the core of our Cyber defense service is Nixu Cyber Defense Center where our cybersecurity specialists and systems monitor, contain and remediate security threats on your behalf 24/7. We protect your core processes and people and provide you with ability to detect early and react quickly. Nixu Cyber Defense Center offers return-on-investment tools for non-technical business owners who want to secure the continuity of their trade. It creates value by offering security that your customers trust. Unlike basic security tools such as virus software, we can monitor your whole information ecosystem. Our team hunts for threats, monitors data and alerts from customer environments, and flags anomalies. Our response team leads the investigation whenever there is a recognized threat.

Nixu Multi-Factor Authentication

Nixu Multi-Factor Authentication (Nixu MFA) service is the easiest way to reduce the risk of identity theft and data leakage. Nixu MFA supports most industry standard authentication protocols, thus enabling wide service coverage for your on-premises and cloud services.

For user enrollment, user only needs to securely authenticate to Office 365 and then scan QR-Code with mobile app. No inbound firewall changes to the internal network are required; neither any VPN tunnels are needed between the services. Only outbound connectivity is required from your network. Deployment does not require any on-premises servers. You only install connectors that perform second-factor request via the secure connection to Nixu MFA. Read more »

Fintech Security and PSD2

With us you can be innovative. And secure. New Payment Service Directive, PSD2, is forcing banks to evolve rapidly into open banking. It enables a whole new marketplace for new innovative financial service providers. PSD2 as well as GDPR bring challenges in meeting requirements for risk based security management, continuous security monitoring and incident reporting. With our help, you can focus on innovative services and leave the security requirements to us. We help you in building secure digital platforms as well as making sure you are compliant with both PSD2 and GDPR.

Digital identity management

Our unique experience on digital identity management and user authentication helps you to achieve digital business transformation fast. Lousy user experience with passwords is killing many innovative digital services - it doesn’t have to be so. Multitude of gradual user identification and authentication choices are available from Social Media logins to one-time passwords and risk-aware authentication. Authentication linked to a customer’s Digital Identity harnesses the customer data into the use of business. With easier customer on-boarding and login you can rapidly improve your digital sales.

Threat Assessment

How do you know which risks and threats you should look at when developing digital applications and platforms? Using threat modelling best-practices, our experts can help you to understand where you should focus your efforts in order to protect customer data and prevent security breaches. Threat assessment done early on, in the architecture design and planning phase, helps to ensure that necessary privacy and security requirements are met cost-efficiently.

Security Assessments

To support your various application and product development models, we offer security verification from traditional web applications assessments to automated vulnerability scanning services and bug bounty programs. Our Security Engineering experts can also help you to assess the required level security and support your developers improving application and product security. This enables you to ensure that security improvement costs are directed where they are most needed. We also conduct audits in accordance with a multitude of information security standards, recommendations and requirements.

Bug Bounty Program

It is often impossible to run a separate security audit for each production release. Most companies have an increasing number of services, applications and components listening to the network and available for partners, customers, employees and virtually to everyone. While this is great for business, the complexity or the exposed systems have gone - or will soon go - through the roof. A bug bounty program can help you manage the complexity in an agile manner - and we can run it for you.

A bug bounty program does not completely replace the need for more traditional assessments or security engineering work, but it cost-effectively complements them.

For your distinct need, we provide two models for running the bug bounty program.

 

Private Bug Bounty Program:

Our expert team helps to define the digital boundaries where external hackers are allowed to operate. It can be a single application or a network of hundreds of targets.

Our expert team with proved skills and track record in successful bug hunting starts going through digital space and searching for anything a malicious actor could use.

Once weakness is found and confirmed, we report it to you using the method most suitable for you.

We help respond to the flaws by providing Nixu’s competences. Regardless of the need – we are here to help.

And we keep on going as long as our contract remains in effect.

DPIA - Data Protection Impact Assessment

Conducting a DPIA supported by Nixu ensures a reliable, verified process with input from multi-skilled team of technical and legal privacy experts. The process goes beyond the mere identification of risks and includes suitable mitigation measures for your organization. Nixu's method is comprised of use case and process workshops with technical and legal points covered. We draft data flow maps to bring clarity to the processing activities, conduct a full assessment of risk with all expertise areas covered and produce a comprehensive DPIA report. The DPIA results will be methodically reported including a specific description of processing with additional data flow maps, an expert assessment of the necessity and proportionality of processing, a full and compliant assessment of risk to individuals and legal, technical and organizational measures to address the risk. DPIA report will deliver you the proof of compliance required for authorities and organizational partners.

DPO as a Service

Nixu’s Data Protection Officer (DPO) as a Service ensures your organization’s designated DPO has extensive legal, technical and managerial privacy expertise. Your tailored DPO will be accessed through one main contact backed up by a multi-skilled team, guaranteeing availability also during holiday seasons and yearly flu epidemics. The DPO will handle and coordinate expert non-operative GDPR tasks such as contact with authorities, privacy training, DPIA specialist advice, reviews of accountability documentation and managing of data breaches. This specialist service stays up to date with privacy legislation and ensures you have the right items on your organization's privacy steering group.


 

Read more

  • Whitepaper: Have I been compromised?
  • Joonatan Henriksson

    Joonatan Henriksson

    Head of Digital Business

Related blogs