In this Member Spotlight we hear from new Startup member, Jag Secure, on their sole business focus on penetration testing, and their gradual expansion serving customers across Scotland and London.
Who is Jag Secure and what do you do?
Jag Secure is a UK based penetration testing company. We focus solely on penetration testing. Founded by Jordan Glover, who has had a passion for ethical hacking since he was a teenager! We’re ethical hackers dedicated to helping businesses and organisations strengthen their defences, reduce risk and help to remediate weaknesses.
Tell us something unique or interesting about your organisation.
Focusing solely on penetration testing allows us to dedicate our training, research and core skills on ethical hacking. We are very keen to keep penetration testing at our heart. What sets us apart is our commitment to building genuine relationships with our clients rather than just delivering reports. We focus on technical expertise and relationship building over pure profit, which means we take time to truly understand each client’s environment and provide detailed remediation guidance. Every report undergoes rigorous quality assurance and we’re always available for follow up discussions to ensure vulnerabilities are properly addressed.
What is your biggest achievement as an organisation?
Making it through our first year!
JAG Secure has been able to genuinely help businesses across Scotland and the UK. We conducted an engagement for a legal organisation. They had recently updated their website and asked us to test it for any weaknesses or vulnerabilities. Within the first day we were able to identify a SQLi attack that revealed sensitive information. Within two hours the weakness was remediated and the information was secure!
A manufacturing business in Edinburgh asked us to come and assess their production warehouses for any weaknesses. We identified a misconfiguration that allowed us to move from the guest networks to corporate. Once inside the corporate networks, we could access sensitive data.
The above are a small example of how we’ve been able to help and we’re proud of the work we do.
What prompted you to become a member of ScotlandIS?
Operating from East Lothian, we found ourselves helping businesses and organisations across the central belt during our first year. Slowly we have been expanding as far north and Inverness and down to London. We are very keen to engage with the ScotlandIS community and help them navigate through penetration testing.
What do you see as the main challenges for the tech industry in the UK and Scotland?
Quality – The tech industry is flooded with services and products, which can be tricky to understand. Organisations and businesses should spend a little time before looking for any services and identify what they need, along with objectives. If the product or service your potentially looking at, meets your needs and objectives, it’s likely that you’re on the right path.
Over the past 18 months, we’ve been inundated with requests for testing due to insurance requirements. The insurers are not being clear on what sort of testing they need, this can lead to assumptions and sometimes the wrong services being carried out. Go back to your insurer and request they specify what they need to meet the requirements. It could be internal or external infrastructure, wireless testing and web applications. Spend that little bit of extra time identifying exactly what you need.
Get in touch if you’d like to find out more at info@jagsecure.com or visit jagsecure.com.