Envitrondeveloped hardware and software that focuses on making the most of local energy with innovative energy management technology. The company originated from a sustainable sailing project, where engineers developed autonomous energy solutions based on wind, water and sun. This knowledge formed the basis for Envitron and their global solutions.
For several years, Warpnet has been allowed to perform an annual pen test at Envitron. Due to recent growth, Envitron chose to also outsource Continuous Security Monitoring to Warpnet.
The Latest Pentest
For Envitron, information security is deeply rooted in the organization, as evidenced by the achievement of multiple certifications, including ISO 27001 and ISO 9001. Maintaining these certifications requires annual pentesting. A pen test is a test in which a specialized party deliberately attempts to break into a system to detect security vulnerabilities.“We think it is important to perform a pen test every year. Of course to maintain our certifications, but mainly because this way we get validation from an external party about our information security and because we are always ready to improve it,”Erik Rademaker, CISO at Envitron.
Envitron has partnered with Warpnet for several years to perform these pen tests. The most recent pen test was performed by our ethical hacker Ruben, he says:“What makes working with Envitron so nice for me is the fact that we as pentesters get a lot of freedom. This way we really get the chance to visualize all vulnerabilities. For example, we performed a walk-in test and a phishing test, as well as investigating whether it was possible to physically break in on location. For Envitron, this means that they get a full picture of vulnerabilities on different sides of their organization.”
And the tests by Ruben and his colleague have indeed paid off. Erik says:“Warpnet was very serious and they pulled out all the stops to make the test as realistic as possible. Through observation, they figured out an alternative way to enter our premises. In this action, they managed to place a listening device in the network. Thanks to the proper setup of our internal systems, they did not manage to capture any information, but we learned valuable lessons.”
After the Pentest
After performing the full pen test, our colleagues compile a detailed report and support in resolving any risks.“In addition to the report, Warpnet also presented the outcome to our team. The information was slightly technical, but easy for the whole team to understand. The presentation and report were very complete and of good quality. Through these annual pen tests and reports we get a good picture of our blind spots and increase our alertness,”Erik.
Structural monitoring
The cooperation between Envitron and Warpnet has recently expanded. Since a few months, Envitron has been using our Continuous Security Monitoring services: the structural monitoring of systems and networks to immediately identify and address security risks and incidents.“We are dealing with growth and an expansion of our portfolio. It was increasingly difficult for us to continuously perform security monitoring internally. Monitoring platforms are very complex and require a lot of specific knowledge. We already had a fine cooperation with Warpnet and trust this time as well. We have not been using Continuous Security Monitoring for six months yet, but we are already seeing good results that allow us to further strengthen our security and they really think along with us,” says Erik.
Via Nestor Security to Warpnet
The Cooperation between Envitron and Warpnet, has come about through a successful collaboration between our partner Nestor Security and Envitron. That collaboration began four years ago when Nestor Security supported Envitron in setting up an ISMS.“This collaboration went so well that we have kept it up. Nestor Security mainly helps us with the legal part of keeping our ISMS up to date. Because the lines of communication between Nestor Security and Warpnet are so short, a question to Warpnet is also quick, as is the request to perform a pen test,”Erik says.
Working together from trust
Jean-François Bloem, account manager at Nestor Security and Warpnet talks about how he experienced the cooperation:“For me as an account manager, working with customers is made all the more exciting by collaborations like the one with Envitron. What makes this partnership so special is the combination of professionalism and maturity in cybersecurity. Envitron not only develops innovative energy management solutions, but also has a clear and mature cybersecurity strategy. As a result, their customers can rely on secure and reliable services. For me, this means that conversations with Envitron take place from a shared foundation of knowledge and trust. We don't just look at challenges, but think together about concrete and secure solutions. As a result, the collaboration really feels like a partnership: working with an organization that understands the value of security and translates this knowledge directly into tangible benefits for their customers.”
Wondering what Warpnet and Nestor Security can do for your organization in the area of cybersecurity? Get in touch with us.