itrust consulting has become a recognised and trustworthy actor in the Information Security field in Luxembourg and even throughout Europe. The SME’s name is the acronym of “Information: Techniques and Research for Ubiquitous Security and Trust”. itrust consulting helps clients coming from public, financial, and private sector to protect their information against any divulgation, manipulation or unavailability, with consulting (SECurity-as-a-Service), auditing, innovation and training services. Audit (Security-as-a-Service) services: -Organisational audits: ISO 2700x, ISO 20000, ISO 27799, IEC 62443, internal referentials etc... -Technical audits: Code reviews (e.g.: OWASP), vulnerability and penetration tests, protection of critical infrastructures, Wi-Fi security, protection des personal data, PCI-DSS, Common Criteria, CSSF compliance, SCADA, privacy etc... Consulting services: -Assistance to security implementation (ISO 27001, ISMS, PolSec etc...) -Project management -Design of secure infrastructures -Technical studies (PKI, VoIP, virtualisation etc...) -Technology migration (Microsoft, PKI etc...) -Risk analysis based on itrust tool: TRICK Light -Assistance in the development of secured applications -Forensics analysis malware.lu CERT: itrust consulting operates the first privately owned CERT in Luxembourg offering the following service: -ODMAS (on-line malware analysis service). -pentest -Forensics Fields of expertise: Critical Infrastructure Protection (finance, energy, health, industry etc...), e-banking, web applications, PKI, systems and networks, IT governance, personal data protection, SCADA, ISMS, risk analysis etc...