Vasco expands consulting services

Vasco is making a major play for more consulting business

Vasco Data Security International is attempting to boost revenues by expanding its high margin consulting business.

The security vendor, which specialises in authentication and e-signature software, has enhanced the services around its product set in order to cover customers’ pre-, during- and post-implementation requirements, it said. An ‘on-demand’ consulting option will also be made available to cover other ad hoc areas.

“Over the years, Vasco has built up a broad and in-depth expertise in vast deployments of strong authentication in e-banking and other industries," said Jan Valcke, the firm’s president and chief operating officer.

"Through our consulting offering, we share our knowledge, methodology and best practices from the early stages of project planning through to deployment and beyond."

Pre-implementation services fall into three categories and are intended to provide customers with information on potential threats, possible defence mechanisms, new technologies and best practice.

The ‘Strong authentication for e-banking’ service, for example, includes business and financial planning as well as support, marketing and communications planning.

‘E-banking security’ includes a customised three-day programme to provide customers with an overview of the latest security threats, an in-depth assessment of the existing authentication mechanisms used in-house and a written report with recommendations for action.

‘Two-factor authentication for mobile applications’, meanwhile, provides users with insights into the mobile phone industry and its technology as well as how to turn a cell phone into an additional authentication channel.

During-implementation services fall into six groups, one of which consists of tailored consulting on how to manage cryptographic keys and technical procedures as well as how to prepare for key ceremonies. Other more technical services include how to best exploit EMV-CAP cards in existing environments.

Post-implementation consulting, meanwhile, centres on fraud detection and analysis to establish whether attacks have occurred as a result of Trojan horses, phishing activity or DNS vulnerabilities.