Testing & Modeling

Cyber Penetration Testing

Penetration testing involves the exploitation of known vulnerabilities to assess the effectiveness of security controls and the likelihood of exploitation by threat actors. Our team recognizes the importance in fully understanding the scope and boundary of any scale of penetration test, large or small. Our first step in this process is to clearly communicate and agree upon the Rules of Engagement (ROE). We also understand that penetration test information and outcomes are sensitive to the organization, so we are sure to define handling instructions, data protection, and reporting requirements. Our team holds industry leading certifications such as Certified Ethical Hacker (CEH), and Certified Information Systems Security Professional (CISSP), and Certified Hacking Forensic Investigator (CHFI). 

Physical Penetration Testing

Cyber and physical penetration testing goes hand-in-hand. Computers, buildings, and even personnel can leave an organization vulnerable to virtual and physical attack. ENSCO’s impartial, third-party review of operational security measures ensures that safeguards have not been compromised and are working effectively. Our experts emulate an adversary and conduct invited (Blue Team) and covert (Red Team) site analyses to seek out physical vulnerabilities and conduct perimeter-breaching exercises to identify penetrable areas. Red Teams also perform discreet personnel exchanges to gain information. Upon completion of such an assessment, the customer receives a report that outlines vulnerabilities and mitigation strategies.

Since 1996, ENSCO has led or supported Red Teams to conduct all-source assessments aimed at identifying critical vulnerabilities within critical mission functions. To accomplish this, we emulate an insider conducting potential industrial espionage activities, foreign intelligence services, or terrorist organizations operating against critical assets.

Full-Scale Physical Testing

The CCIP at the Transportation Technology Center (TTC) has the unique ability to perform full-scale physical testing to aid in the development of resiliency methods and technologies for Critical Infrastructure organizations. 

  • Blast & Fire Testing – The CCIP at the TTC has the ability to perform full-scale explosion and fire testing to aid in the assessment of physical security conditions and validate computer models. All testing is performed under the supervision of the TTC’s dedicated fire department and with the TTC’s already achieved certifications and permits. Blast testing can be done using up to 500 tons of equivalent TNT. The TTC also has an underground tunnel that has been used for assessing subway explosion conditions. More information can be found at the TTC Website.
  • HAZMAT and Chem-Bio Gas Release Testing – The CCIP at the TTC also has the unique ability to conduct secluded and private gas release tests to aid in the modeling of gas plumes, pipeline release, and chem-bio releases. Testing is performed with the TTC’s dedicated emergency response team and in-house modeling experts to ensure that all tests are performed safe and ensured to record all needed information for model validation.

CBRNe-Modeling

The CCIP includes ENSCO scientists that are trusted experts in the fields of Environmental Fate and Biosystems Modeling. We apply our understanding of the modern Chemical, Biological, Radiological, Nuclear, and Explosive (CBRNe) mission to provide unique and timely solutions to Critical Infrastructure organizations. The following are key modeling specialties:

  • Atmospheric and Computational Chemistry – ENSCO scientists couple experiment with computational theory to develop algorithms that predict the evolution of CBRNe threats in atmospheric, terrestrial, and floral environments. Our theory is also a guide to experimental researchers in academic and commercial labs, which have been our traditional partners.
  • Biological and Environmental Modeling – ENSCO provides modeling and simulation architectures that are dedicated to optimizing the design, deployment and performance of sensors and collection systems in politically sensitive, operationally challenging, hard target environments. Our virtual analysis reduces design costs and risks, streamlines deployment, and generates concepts of operation that maximize system effectiveness. This includes sensor integration, false alarm reduction, and optimum sensor deployment.

Biological and Environmental Modeling

ENSCO provides modeling and simulation architectures that are dedicated to optimizing the design, deployment and performance of sensors and collection systems in politically sensitive, operationally challenging, hard target environments. Our virtual analysis reduces design costs and risks, streamlines deployment, and generates concepts of operation that maximize system effectiveness. This includes sensor integration, false alarm reduction, and optimum sensor deployment.