Atsec Information Security Corporation: Company Profile

Background

Overview

Atsec Information Security Corporation is an independent, privately-owned company specializing in information security services. Established in January 2000, atsec has grown into a global entity with offices across the United States, Europe, and Asia. The company is dedicated to providing professional and impartial advice on information security, empowering businesses and operations worldwide.

Mission and Vision

Atsec's mission is to deliver professional and independent information security guidance that enhances their clients' business and operational capabilities. The company's vision centers on maintaining independence to ensure impartiality in all services, upholding the highest standards of integrity, and focusing exclusively on IT security.

Primary Area of Focus

Atsec specializes in information security assessments, testing, and evaluations. Their services encompass a wide range of areas, including IT product evaluation, cryptographic testing, telecommunications security, identity verification, IT product certification, and payment security.

Industry Significance

As a globally trusted entity, atsec's accredited laboratories are leaders in evaluating and testing complex software-based IT systems for both vendors and government agencies. Their commitment to independence and impartiality has established them as a credible and reliable partner in the information security industry.

Key Strategic Focus

Core Objectives

Atsec's strategic focus is to provide comprehensive and impartial information security services that enable organizations to achieve compliance with various security standards and regulations. Their objectives include delivering high-quality evaluations, fostering innovation in security testing, and maintaining a strong global presence to serve a diverse clientele.

Specific Areas of Specialization

• IT Product Evaluation & Assessment: Conducting standards-based evaluations of commercial off-the-shelf hardware, software, and organizational security.

• Cryptographic Testing: Providing FIPS 140-3 testing services and conformance testing for cryptographic algorithms.

• Telecommunications Security: Offering GSMA NESAS Audits and SCAS Testing for network equipment products.

• Identity Verification: Ensuring compliance with NIST Personal Identity Verification Program (NPIVP) and supporting FIDO standards for secure authentication.

• IT Product Certification: Serving as an accredited private Certification Body for Common Criteria evaluations.

• Payment Security: Assisting organizations in achieving PCI compliance through various assessments and certifications.

Key Technologies Utilized

Atsec employs a range of technologies to deliver its services, including:

• Security Content Automation Protocol (SCAP): A suite of open standards for automating the management of security configurations.

• Open Trusted Technology Provider Standard (O-TTPS): A framework for ensuring the security of information and communications technology products.

• FIDO Standards: Protocols for secure, passwordless authentication.

• FIPS 140-3: A standard for cryptographic modules.

Primary Markets or Conditions Targeted

Atsec serves a diverse range of markets, including:

• Government Agencies: Providing evaluations and certifications to meet regulatory requirements.

• Telecommunications Providers: Ensuring the security of network equipment and services.

• Financial Institutions: Assisting in achieving compliance with payment security standards.

• Healthcare Sector: Ensuring the security of medical devices and healthcare information systems.

Financials and Funding

Funding History

Atsec is a privately held company and does not publicly disclose detailed financial information or funding history. As of December 31, 2022, the company employed 32 individuals.

Total Funds Raised

Specific details regarding the total funds raised by atsec are not publicly available.

Notable Investors

As a privately held entity, atsec has not publicly disclosed information about its investors.

Intended Utilization of Capital

While specific details are not disclosed, it is reasonable to infer that atsec utilizes its capital to:

• Expand and enhance its service offerings.

• Invest in research and development to stay ahead of emerging security threats.

• Maintain and upgrade laboratory facilities and testing equipment.

• Support global expansion and establish new offices in strategic locations.

Pipeline Development

Atsec's pipeline development focuses on:

• Service Expansion: Introducing new evaluation and testing services to address emerging security challenges.

• Standard Compliance: Ensuring that their services align with the latest industry standards and regulations.

• Technological Advancements: Integrating advanced technologies to enhance the efficiency and effectiveness of their evaluations.

Key Pipeline Candidates

Atsec is actively involved in:

• Developing New Evaluation Frameworks: To address evolving security requirements.

• Enhancing Cryptographic Testing Services: To support the latest cryptographic standards.

• Expanding Certification Programs: To include emerging technologies and sectors.

Stages of Clinical Trials or Product Development

As a service-oriented company, atsec does not engage in clinical trials or product development but focuses on the development and enhancement of its service offerings.

Target Conditions

Atsec targets a wide range of security conditions, including:

• Compliance with International Standards: Such as Common Criteria and FIPS 140-3.