DSShield Security Diagnostics is a professional services offering that provides systematic evaluation of information system security through three main approaches: security audits, vulnerability assessments, and penetration testing. Security audits are based on industry-accepted standards including PCI DSS, FISMA, GLBA, SOX, HIPAA, and ISO 27001, covering all aspects of security including people, processes, and technology. The auditing approach addresses legal requirements specific to different industries and countries. Services are delivered by consultants certified as CISSP, CISA, ISO 27001, and GCIA. Vulnerability assessments define, identify, and classify security holes in computer, network, or communications infrastructure. The process includes defining and classifying network resources, assigning importance levels, identifying potential threats, developing strategies to address serious problems, and implementing ways to minimize consequences of attacks. Penetration testing services include both internal and external assessments. Internal penetration tests identify vulnerabilities that could be exploited if an attacker gains access to the internal corporate network, examining potential attacks from Trojan programs or malicious insiders. External penetration tests examine internet-facing systems from a hacker's perspective, using manual testing, investigation, analysis, open-source security scanning tools, and manual exploitation of vulnerabilities. The company has conducted security assessments across multiple industries including pharmaceutical, banking, financial institutions, ICT, healthcare, BPO, telecommunications, media, manufacturing, trading, aviation, stock exchanges, and insurance.