Abacode is a Cybersecurity firm committed to addressing every aspect of the cyber-threat landscape for businesses throughout the world.

As an MSSP, we provide guidance and strategic business solutions to clients with our dedicated 24/7 SIEM and SOC solutions. Our unique ecosystem connects entrepreneurs, academia, government agencies, and technology innovators to produce cutting-edge cyber services for businesses in every industry and sector.

abacode cyberlorica-logo

Executive Summary
Florida Center for Cybersecurity Annual Conference
   October 27, 2017
Florida Center for Cybersecurity Annual Conference
REMINDER: EARLY BIRD REGISTRATION OPEN Abacode is proud to be a Platinum Sponsor this year for the Florida Center for Cybersecurity Conference. Register now to take
Keep Reading
(ISC)^2
   September 25, 2017
(ISC)^2
Keep Reading
TBBJ Technology Round Table
   September 18, 2017
TBBJ Technology Round Table
Keep Reading
Abacode Launches Latest Security-As-A-Service (SECaaS) Platform At Black Hat And DEF CON In Las Vegas
   July 24, 2017
Abacode Launches Latest Security-As-A-Service (SECaaS) Platform At Black Hat And DEF CON In Las Vegas
Abacode, a Managed Security Service Provider (MSSP), will be on hand to address their continued roll-out of SECaaS for businesses throughout the Americas, Caribbean, Europe
Keep Reading
Abacode Actively Pursues A Third Security Operations Center (SOC) Location Near Downtown Tampa, Florida
   July 11, 2017
Abacode Actively Pursues A Third Security Operations Center (SOC) Location Near Downtown Tampa, Florida
July 11, 2017: FOR IMMEDIATE RELEASE Abacode Actively Pursues  A Third Security Operations Center (SOC) Location  Near Downtown Tampa, Florida Abacode Cybersecurity COO, Rolando Torres,
Keep Reading
HEALTH+CARE 2017
   June 28, 2017
HEALTH+CARE 2017
Keep Reading
NAA Annual Education Conference
   June 21, 2017
NAA Annual Education Conference
Keep Reading
ABACODE CEO ON THE INCREASING IMPORTANCE OF ARENA SECURITY
   June 15, 2017
ABACODE CEO ON THE INCREASING IMPORTANCE OF ARENA SECURITY
LONDON – JUNE 15, 2017 ABACODE CEO ON THE INCREASING IMPORTANCE OF ARENA SECURITY VenuesNow 2017 Annual Conference in Los Angeles, California, will explore ‘The
Keep Reading
Abacode Cybersecurity Partners with FBI for Informative Workshop
   May 31, 2017
Abacode Cybersecurity Partners with FBI for Informative Workshop
FOR IMMEDIATE RELEASE   Abacode Cybersecurity Partners with FBI for Informative Workshop Tampa, FL, 01 December 2016   The protection of company data from cybercrime
Keep Reading
Responding to WannaCry
   May 26, 2017
Responding to WannaCry
Over 150 countries are still recovering from the WannaCry ransomware attack on May 12th, which affected over 300,000 computers worldwide (Graham). As individuals, companies, and
Keep Reading
Abacode CEO Michael Ferris interviewed by Britain’s SkyNews
   May 24, 2017
Abacode CEO Michael Ferris interviewed by Britain's SkyNews
Michael Ferris, Abacode’s CEO, has recently been interviewed by Britain’s SkyNews on the importance of cybersecurity for companies and how the responsibility for potential breaches
Keep Reading
Citrix Synergy
   May 23, 2017
Citrix Synergy
Keep Reading
Abacode CTO featured in ABC Channel 10 segment
   May 23, 2017
Abacode CTO featured in ABC Channel 10 segment
Jeremy Rasmussen, Abacode’s CTO, was recently featured in a WTSP – ABC Channel 10 piece on professional hackers and cybersecurity experts, how easy it is
Keep Reading
USF Recruiting Event
   May 16, 2017
USF Recruiting Event
Keep Reading
Special Operations Forces Industry Conference
   May 15, 2017
Special Operations Forces Industry Conference
Keep Reading
FAA Board of Directors Meeting
   May 10, 2017
FAA Board of Directors Meeting
Keep Reading
Cyber Tsunami – The State of Cybersecurity in 2017
   May 9, 2017
Cyber Tsunami – The State of Cybersecurity in 2017
Keep Reading
2017 Digital Privacy and Cybersecurity Conference
   May 5, 2017
2017 Digital Privacy and Cybersecurity Conference
Keep Reading
TAA Education Conference
   April 26, 2017
TAA Education Conference
Keep Reading
Game Changer Cybersecurity Breakfast Seminar
   April 26, 2017
Game Changer Cybersecurity Breakfast Seminar
Keep Reading
Cyber Panel
   April 20, 2017
Cyber Panel
Keep Reading
World Strategic Forum
   April 19, 2017
World Strategic Forum
Keep Reading
UKAA Spring Drinks Reception
   April 5, 2017
UKAA Spring Drinks Reception
Keep Reading
Florida GovCon Summit
   March 29, 2017
Florida GovCon Summit
Keep Reading
CIA Wikileaks Revelations – Channel 10 News Interview with Abacode Director of Cybersecurity Jeremy Rasmussen
   March 8, 2017
CIA Wikileaks Revelations - Channel 10 News Interview with Abacode Director of Cybersecurity Jeremy Rasmussen
The interview appears here.
Keep Reading
IFCPA Cyber Security Seminar
   February 16, 2017
IFCPA Cyber Security Seminar
The IFCPA will present The Cyber Security Seminar for the Suncoast February Chapter Meeting on February 16th,2017. The seminar will provide members and guest attendees
Keep Reading
Assessing Cyber Risk During Due Diligence
   February 16, 2017
Assessing Cyber Risk During Due Diligence
Abacode was pleased today to partner with ACG in presenting “A Discussion About Assessing Cyber Risk During Due Diligence” in Tampa, FL at the Centre
Keep Reading
Cybersecurity CEO to Attend Cayman Alternative Investment Summit
   February 15, 2017
Cybersecurity CEO to Attend Cayman Alternative Investment Summit
Keep Reading
Managing Partner Kirk Downey Attending 2017 NAA Student Housing Conference
   February 14, 2017
Managing Partner Kirk Downey Attending 2017 NAA Student Housing Conference
Keep Reading
Credit Card Fraud – Channel 10 News Interview with Abacode Director of Cybersecurity Jeremy Rasmussen
   February 2, 2017
Credit Card Fraud - Channel 10 News Interview with Abacode Director of Cybersecurity Jeremy Rasmussen
The interview appears here.
Keep Reading
Managing Partner Kirk Downey Attending 2017 National Multifamily Housing Council Meeting
   January 29, 2017
Managing Partner Kirk Downey Attending 2017 National Multifamily Housing Council Meeting
The event is held in San Diago, CA, January 24-26.
Keep Reading
CEO Michael Ferris Attending 2017 Real Estate Round Table hosted by DHS
   January 24, 2017
CEO Michael Ferris Attending 2017 Real Estate Round Table hosted by DHS
Abacode CEO Michael Ferris will attend the Real Estate Roundtable, sponsored by the Department of Homeland Security on January 24-25, 2017 in Washington, DC.  This
Keep Reading
US Department of Homeland Security Publishes National Cyber Incident Response Plan
   December 29, 2016
US Department of Homeland Security Publishes National Cyber Incident Response Plan
The National Cyber Incident Response Plan can be found here.
Keep Reading
CIOReview Names Abacode Cybersecurity in 20 Most Promising Government Technology Solution Providers 2016
   December 17, 2016
CIOReview Names Abacode Cybersecurity in 20 Most Promising Government Technology Solution Providers 2016
FREMONT, CA Abacode Cybersecurity has been recognized as one of the top 20 Government Technology Solution Providers of 2016 by CIOReview. “It’s a great honor
Keep Reading
Preventing Identity Theft while Shopping Online – Channel 10 Interview with CEO Michael Ferris
   December 15, 2016
Preventing Identity Theft while Shopping Online - Channel 10 Interview with CEO Michael Ferris
Keep Reading
Cyber Attacks – FBI Briefing with CENTCOM Guest Speaker
   December 14, 2016
Cyber Attacks - FBI Briefing with CENTCOM Guest Speaker
Keep Reading
Incident Response Talk by Cybersecurity Director Jeremy Rasmussen
   December 2, 2016
Incident Response Talk by Cybersecurity Director Jeremy Rasmussen
Keep Reading
Election Phishing
   November 9, 2016
Election Phishing
Election day has come and gone, and left Americans with mixed feelings surrounding the outcome. Already, hackers are taking advantage of some Americans’ confusion about
Keep Reading
FBI Briefing – Cyber Threats
   November 2, 2016
FBI Briefing – Cyber Threats
Keep Reading
$2.7 Million HIPAA Penalty for Two Smaller Breaches
   July 15, 2016
$2.7 Million HIPAA Penalty for Two Smaller Breaches
Original article posted here, July 15, 2016.
Keep Reading
Wendy’s Hackers Took a Bite Out of 1,000+ Restaurants
   July 8, 2016
Wendy's Hackers Took a Bite Out of 1,000+ Restaurants
Original article posted in Data Breach Today, July 8, 2016.
Keep Reading
LinkedIn Lost 167 Million Account Credentials in Data Breach
   May 18, 2016
LinkedIn Lost 167 Million Account Credentials in Data Breach
Original article posted at Fortune, May 18, 2016.
Keep Reading
Cyber hack got access to over 700,000 IRS accounts
   February 26, 2016
Cyber hack got access to over 700,000 IRS accounts
Original article posted in USA Today, February 26, 2016.
Keep Reading
Huge rise in hack attacks as cyber-criminals target small businesses
   February 8, 2016
Huge rise in hack attacks as cyber-criminals target small businesses
Original article posted at The Guardian, February 8, 2016.
Keep Reading

What We Do

As an MSSP, we tailor our services to meet the needs of your business.

Assessments

Assessments are important for determining what your current cybersecurity posture is so that you can take corrective actions and implement effective countermeasures. A comprehensive assessment will evaluate your technologically implemented controls, human factor controls, policies and procedure, and other security measures.

Penetration Tests

A penetration test takes things a step further and actually attempts to exploit vulnerabilities in your current security architecture. We do this to show flaws that could leaving you exposed and how to fix them.

Web Application Vulnerability Scans

Your corporate website is the face of your organization. In order to ensure your reputation, you want to make sure it is as secure as possible. Abacode will scan your website or web app to detect both external and internal vulnerabilities and provide recommendations on how to fix these vulnerabilities.

Internal Network Vulnerability Scans

Internal network fidelity scans check for missing patches, misconfigurations, and other risk factors to ensure that the Intranet is as secure as possible. Intranet security is critical for your cybersecurity posture as disgruntled employees, contractors, or other parties that have access to your internal network pose as big of a risk as external cybercriminals trying to break in.

Leadership and Staff Training

Humans are often the weakest link when it comes to cybersecurity. Abacode provides training for the leadership and staff to ensure that they understand their roles and responsibilities, current threats, and how they can best help support cybersecurity initiatives and efforts in the enterprise.

Compliance

ISO 27000 is the international standard for organizational cybersecurity maturity. Abacode can perform a gap assessment to show you what’s missing from your overall infrastructure security. We can help your prioritize the implementation of ISO 27000 controls at a pace your organization can assimilate.

Self Governance

Information Security Governance ensures the continuity of the security program past the initial implementation phase. Information Security starts from the top down. You need executives and management to create and communicate policies and procedures and then those need to be enforced in the operational environment.

Forensic Investigations

Once an incident occurs, we can be on site within 24 hours to begin the investigation. We handle everything under the oversight of a licensed private investigator as it is required by most states. We apply the silver platter doctrine so that if necessary, all evidence, findings, reports, and documentation could be handed over to the authorities for prosecution and should be admissible in a court of law.

24/7 IT Infrastructure and Device Monitoring

Monitoring is the only consistent way to detect and stop cybercriminals before they breach your organization. Abacode combines industry recognized Security Event and Incident Management (SIEM), Intrusion Detection System (IDS), Vulnerability Assessment (VA) and Mobile Device Management (MDM) solutions with Open Source and Custom-built tools in a platform that is monitored by cybersecurity professionals, 24 hours a day, 7 days a week.

Let us secure your company's future.

“Partnering with Abacode allows us to utilize the expertise of its staff to properly implement a managed cybersecurity program, helping to protect the Tampa Bay Lightning, Tampa Bay Storm, and AMALIE Arena against threats without the overhead of additional staff and resources focused solely in these areas. We are pleased to have Abacode as a partner.” – Sean Walker, VP of Innovation and Technology Services, Tampa Bay Lightning

Associations

fc-cyber

national

Designations

ISO/IEC 27001:2013: an auditable international standard that formally outlines requirements for an Information Security Management System (ISMS) to help protect and secure an organization’s data.

Cyber Essentials Certification

Community Involvement

ABACODE HOME

What We Do

Partners

MISSION

Vision

Values

SERVICES

Consulting

Managed Network Surveillance

Assessments

Remediation

Training

No-Cost Light Evaluation

CYBER LAB

Events

Education

Research

News

Blog

BECOME A PARTNER

LifeLock

SiteLock

CAREERS
CONTACT
TWITTER FEED
AbacodeCybersecurity
8h
AbacodeCybersecurity
@Abacode_Cyber

Abacode CEO, @MFerris007, on the increasing importance of arena security abacode.com/abacode-ceo-in… pic.twitter.com/lFnhjN11TD

reply reply retweet retweet favorite favorite
?
Learn about our
MSSP guidance!

Assessments

During this phase, Abacode performs a comprehensive assessment of the organization. This assessment might include: a penetration test, web vulnerability assessment, policy and procedures review, information security controls check, and security technology configuration review. Once the assessment is complete, our client will receive a detailed report of findings and recommendations that help drive the next stage, Remediation of Findings.

The findings and recommendations identified in the Assessment Report are prioritized so the organization may implement those of highest impact first. Budget considerations along with internal resource constraints often play a role on how quickly findings are corrected. In some cases, the organization has to accept the risk posed by a finding due to a lack of resources. Often, the organization is required to engage a third party company to help with remediation, and Abacode can assist with this process as well.

×

Penetration Tests

A Penetration Test helps our clients determine how effectively the implemented security technology, policies, and controls can prevent the intrusion of determined, ethical hackers. Organizations with the highest level of cybersecurity readiness perform penetration testing exercises regularly, typically once a year, in order to assess security in the ever changing infrastructure and threat landscape. As new devices, systems, applications, and solutions are adopted by the organization, new vulnerabilities and risks are introduced which must then be handled.

During the Penetration Test, the Cybersecurity Team utilizes the “red team” approach in which Abacode operates as an outsider trying to breach the organization. In other instances, the Cybersecurity Team applies a “blue team” approach to assess the vulnerabilities in collaboration with the organization’s staff. The outcome of the Penetration Testing effort is a formal report of findings and recommendations generated from the exercise that will help our clients raise their readiness level.

 

×

Internal Network Vulnerability Scans

Abacode’s Security Operations Center (SOC) team performs monthly vulnerability scans to detect issues such as missing patches, malware, enabled services that should be disabled, open ports, and unauthorized software, among others. The outcome of these vulnerability scans is presented to our client in an actionable report that summarizes and prioritizes the findings and provides corrective recommendations.

Abacode’s SOC also generates weekly reports summarizing the level of activity, events, and alarms addressed during the week. Included are listings of malicious IP addresses targeting the organization so those IP addresses can be blocked by the firewall. A summary of these weekly activity reports is then included in the monthly vulnerability report.

×

Information Security and Governance

The implementation of an Information Security Management (ISM) program shows a high-level of commitment of the organization to keeping the top most cybersecurity readiness. Organizations in highly regulated markets are required to comply with standards such as HIPAA and PCI DSS that involve information security governance efforts.

Abacode believes that ISM programs such as the NIST Framework and ISO 27001, when properly implemented and executed, are critical to keeping an organization safe. Such programs define a set of controls that incrementally reduce the risk of breach.

Abacode can help your organization select the ISM standard that best suits your needs and work with your staff to implement the ISM controls at a pace your organization can digest.

×

Leadership and Staff Training

The efficacy of social engineering means that in the midst of robust cybersecurity tools, humans remain the weakest link. The most effective way to mitigate the cyber risk exposure introduced by employees, partners, and vendors is through training. Abacode provides training tailored both to the leadership of the organization and the general staff.

Human factor controls must be tracked and audited to ensure that policies and procedures are followed by the staff and validate that implemented technological controls are functioning properly.

Every member of the organization is critical to the success of the implementation of cybersecurity policies and procedures. Staff members should be empowered to fulfill their cybersecurity roles and responsibilities and be vigilant and careful in the utilization of the organization’s assets. Furthermore, as today’s cybersecurity paradigm is assumption of breach, it is imperative that the organization’s team members at all levels understand their responsibilities in reporting incidents if and when they occur, and which reporting mechanisms to use.

Lastly, cybersecurity training must be reinforced regularly to keep the staff up-to-date on recent threats, keep their level of awareness high, and cybersecurity responsibilities fresh in their minds.

×

ISO 27000 Information Security Management

International standards such as ISO 27000 are strategic tools and guidelines to help organizations tackle some of the most demanding challenges of modern business. These standards ensure that organizational operations are as efficient as possible, increase productivity and customer satisfaction, and help organizations access new markets. ISO standards aid in cutting costs through improved systems and processes, improving safety and quality, ensuring compatibility of products and services, and reducing their impact on the environment.

The implementation of an Information Security Management (ISM) program shows a high level of commitment by the organization to cybersecurity readiness. Furthermore, organizations in highly regulated markets are required to comply with standards such as HIPAA and PCI DSS that involve information security governance efforts.

Abacode believes that ISM programs such as the NIST Framework and ISO 27001, when properly implemented and executed, are critical in keeping an organization safe. These standards define a set of controls that each incrementally reduce the risk of breach. Abacode can help each organization select the ISM standard that best suits organizational needs and work with the staff to implement the ISM controls at a pace the organization can digest.

×

Web Application Vulnerability Scans

Similar to Penetration Testing, during the Website/ Web Application Vulnerability Assessment, a team of ethical hackers will attempt to compromise the target website or web application. Typically, the first step is to run a series of scans and tools that identify open ports, active services, and vulnerabilities that malicious hackers could exploit. Abacode’s ethical hackers then utilize the gathered intelligence to try to compromise the website or web app. Misconfigurations, third party plugins/ tools, and poorly written code introduce vulnerabilities imperceptible to the non-cybersecurity expert but exploitable by hackers.

Abacode highly recommends that websites and web apps are assessed for cybersecurity readiness prior to going into production plus with every major release, particularly when these assets handle transactional and/or sensitive data. Even informational corporate websites should be scanned and tested as any compromise of such websites pose a threat to the organization’s online brand and reputation.

×

Forensic Investigations

Cyber incidents, or data breaches must be investigated in a timely fashion for the highest probability of finding the root cause of the event.

Abacode is prepared to help you execute your incidence response by performing a full forensic investigation, following the silver platter approach required by the Department of Justice for prosecution. Our forensic investigations are performed under the directive and supervision of a licensed private investigator, as is required by most states. If necessary, all evidence, findings, reports, and documentation may be handed over to authorities for prosecution and may be admissible in a court of law.

Abacode can work with your legal advisors, insurance company, and executive team to assess the extent of an incident, the timing of the event, and to discover if there are notification requirements. Abacode performs these investigations under the strictest level of confidentiality in direct and exclusive communication with the organization contracting the services.

×

24/7 IT Infrastructure and Device Monitoring

Cybercriminal organizations have an unfair advantage over their victims, particularly those not actively monitoring their IT infrastructure and network. Without monitoring, a cybercriminal can operate undetected while progressing towards compromising and breaching the network of the unsuspecting victim.

Technology alone cannot stop hackers, and it is important to differentiate between software that enables the detection of unauthorized activity, and a full monitoring solution which includes hardware, software, and professional staff to constantly combat cyber-crime. Abacode’s Cyber Lorica is that solution.

With our configuration, operation, and diligent maintenance, our monitoring platform will enable the organization to detect and deter attacks. Monitoring requires human intelligence and human decision making to analyze the attacks and determine the proper course of action or response to protect the organization.

Abacode’s Security Operations Center (SOC) team monitors the events and alarms generated by the Cyber Lorica console, 24 hours a day, 7 days a week. Our TIER 1 cybersecurity professionals are constantly observing our alarms and events console to analyze alarms as soon as they arise. The Abacode team can internally escalate the alarm to the TIER 2 and/or TIER 3 support team members to decide if a client escalation is required, and to determine the recommended corrective action. If an alarm requires escalation to the client, specific preset protocol is followed.

×

ISO/IEC 27001:2013

ISO/IEC 27001:2013 is an auditable international standard that formally outlines requirements for an Information Security Management System (ISMS) to help protect and secure an organization’s data.

×

EU-U.S. Privacy Shield Framework

Certified under the EU-U.S. Privacy Shield Framework.

×

SOC 3 Type 2

This Trust Services Report is designed to meet the needs of Abacode customers that want assurance about Abacode controls related to security and availability but do not need the level of detail provided in a SOC 2 Report.

×
Junior Cybersecurity Engineer

Apply now to be an Abacode Junior Cybersecurity Engineer!

Your Name

Your Email

Message (optional)

Resume

×