Cyber threats are on the rise and growing in complexity. But, economies of scale is forcing organizations and businesses to drive down their operational costs while still maintaining an aggressive and proactive security posture. A managed security service provider will take care of the security posture of your organization while you can focus on your business. We believe that a managed cyber security service is the most cost effective solution to address cyber security issues.

Sri Lanka CERT | CC's Managed Security Services offering is designed to strengthen the security posture of your organisation or business by providing the expertise and support you need to detect, prevent and remediate any cyber security related threats to your IT infrastructure.

Why do you need a Managed Security Service Provider (MSSP) for your company?

  • It allows you to focus on your business and be as productive as you can be
  • Predictable expenses that introduces operational stability, and proactive management that reduces resource unavailability and surprises.
  • Impracticality of hiring information security specialists as in-house staff and having to keep them suitably trained continuously.
  • Functions and features of MSSP can be customized according to the needs of the organization
  • 24x7 availability of security experts
  • Prosecution – MSSP’s are often well connected to law enforcement agencies and can understand digital forensic analysis and evidence required to successfully support legal proceedings if and when required
  • Security Awareness – the MSSP can deal with potential threats and vulnerabilities, attack patterns, intruder tools, and current best security practices as well as issue advance warnings of new vulnerabilities

Sri Lanka CERT|CC is well positioned to provide following managed services. All of these services can be customized according to specific customer requirements and will be reflected in a Managed Service Agreement (MSA).

Vulnerability Assessments

Sri Lanka CERT | CC's Vulnerability assessment service will help an organization to improve its security posture by identifying vulnerabilities before they become security incidents. Our experts use a proven combination of industry tools, best practices and in-house techniques to probe your network/ devices for vulnerabilities and hence identify potential areas of risk.

We analyse automated scan results and manually verify them to eliminate any false positives before delivering the report. This will help the organization to implement the recommendations in an efficient and cost effective manner. A detailed report will be provided with findings and recommendations.

Benefits:
  • Improved security posture through comprehensive vulnerability identification and remediation
  • Minimizes downtime by identifying vulnerabilities before they become security incidents
  • Eliminate false positives through expert custom analysis, which accompanies each vulnerability scan

The standard managed vulnerability assessment service will include the following;

Services Assessments per year*
Network vulnerability assessment 2
Web site vulnerability assessment 2
Mail server vulnerability assessment 1
Server OS Vulnerability assessment 1

* Can be customized according to the organization's requirements and will be reflected in the MSA.

Penetration Testing

Sri Lanka CERT | CC will provide an internal and/or an external penetration testing service that involves simulating real-world attacks to provide a current view of vulnerabilities and threats to the client's network infrastructure.

These assessments will begin with a discovery process to develop a baseline profile of accessible services, ports and systems as targets for further internal or external penetration testing.

The process involves an in-depth analysis including manual probing to:

  • Test identified components to gain access to the networks
  • Network devices such as firewalls, routers, and switches
  • Network services such as web, DNS, email, ftp, etc.
  • Determine possible impact or extent of access by attempting to exploit vulnerabilities

A detailed report will be provided with findings and recommendations

Benefits:
  • Minimize downtime by identifying vulnerabilities and taking necessary precautions before these vulnerabilities are exploited
  • Enhanced security of information assets through reduced risk of information leak.
  • Effectively mitigate vulnerabilities detected through expert guidance from Sri Lanka CERT | CC

The standard managed penetration testing service will include the following;

Services Assessments per year*
Network penetration test 2
Web server penetration test 2
Mail server penetration test 1
Database server penetration test 2
Any other servers/services/applications 2

* Can be customized according to the organization's requirements and will be reflected in the MSA.

System Hardening

The purpose of system hardening is to eliminate as many security risks as possible. This is typically done by assessing the systems against the security best practices.

There may be continuous changes to the information systems of the organization. As a result, it may introduce new vulnerabilities due to misconfiguration, and/or unnecessary software/services etc.

A detailed report will be provided with findings and recommendations.

Benefits:
  • Minimise information security risk by ensuring that devices are properly configured
  • Prevent device downtime and improve productivity.
  • Facilitate timely identification and prioritization of vulnerabilities

A standard managed penetration testing service will consist of the following;

Services Assessments per year*
Server operating system hardening 2
Web server hardening 2
Mail server hardening 1
Database server hardening 2
Firewall configuration review 1

* Can be customized according to the organization's requirements and will be reflected in the MSA.

On-site and off-site consultation

This service mainly focuses on incident response. The main purpose of this service is to ensure that the client is not unduly burdened with day to day information security related incidents.

Services:

  • Over the phone consultancy
  • On-site incident handling
  • Timely response and mitigation to incidents occurring at customer premises
  • Review of security policies and processes – consultations to advice the client about the maintenance of cooperate security policies along with procedures and guidelines which are aligned with the day to day business operations
Benefits:
  • Limited requirement for full-time dedicated security staff
  • Support provided by domain experts
  • The organizations’ policies and procedures will be a living and up-to date document

Standard consultancy services will be provided as follows:

Services Assessments per year*
Over the phone consultancy As and when they occur
On site Incident handling As and when they occur
Policy Review 1

* Can be customized according to the organization's requirements and will be reflected in the MSA.