We specialize in safeguarding software applications from cyber threats through comprehensive security measures and cutting-edge technologies. We conduct in-depth vulnerability assessments, code reviews, and penetration testing to identify potential weaknesses in your applications. With a focus on proactive defense, we implement robust firewalls, intrusion detection systems, and encryption protocols to ensure that your software remains resilient against cyber attacks. Our experts stay up-to-date with the latest security trends, enabling us to provide continuous monitoring and rapid incident response. By partnering with us, you can rest assured that your software applications are protected from evolving cyber threats, preserving the integrity and confidentiality of your valuable data.

  • Vulnerability assessment for mobile applications – Android, IOS, and Harmony
  • Vulnerability assessment for software applications, web applications, and payment gateways
  • VAPT for Payment Related Mobile Applications under CBSL Guidelines
  • Security Training and Awareness
  • Security Incident Response


We are dedicated to fortifying your network and cloud infrastructure to ensure the utmost security of your digital assets. We offer comprehensive security assessments to identify vulnerabilities and design tailored solutions to address them effectively. Our expertise lies in implementing robust authentication and access control mechanisms, encrypted data transmission, and real-time threat detection systems. With a focus on best practices, we configure and monitor firewalls, routers, and cloud security services to prevent unauthorized access and data breaches. By partnering with us, you can trust that your network and cloud infrastructure are fortified against potential cyber threats, enabling you to conduct your business with confidence and peace of mind.

  • Internal and External Network Vulnerability Assessments
  • Penetration testing
  • Cloud security reviews
  • Wireless network security reviews
  • Network architecture reviews
  • Firewall rule-based reviews
  • Configuration reviews of routers and switches
  • Server OS configuration reviews
  • Data centre physical security


We specialize in Governance, Risk, and Compliance (GRC) services to help your organization navigate the complex landscape of security and regulatory requirements. We offer a holistic approach to GRC, helping you establish effective policies, procedures, and controls to ensure data protection, privacy, and compliance with relevant laws and regulations. Our experts conduct comprehensive risk assessments, providing valuable insights to mitigate potential threats and vulnerabilities. We also assist in streamlining compliance processes, facilitating audits, and aligning security strategies with your business goals. With our GRC services, you can confidently manage risks, demonstrate compliance, and build a resilient security posture that safeguards your reputation and sustains your business growth.

  • IT General Control Reviews
  • IT Risk Assessments
  • Information Security Policy  Procedure development and review
  • Information security management system (ISMS) internal audits
  • Cyber security readiness
  • Business Continuity and Disaster
    recovery plan reviews


We specialize in digital forensics, providing cutting-edge investigative services to uncover and analyze digital evidence. We assist individuals and organizations in resolving complex cyber incidents, data breaches, and unauthorized access. Our forensic experts employ state-of-the-art tools and methodologies to acquire, preserve, and analyze digital data from various sources. Whether it’s identifying the source of a cyber attack, recovering deleted files, or presenting expert testimony in legal proceedings, we offer reliable and efficient solutions. With our digital forensics services, you can gain crucial insights into digital incidents, take appropriate actions, and enhance your overall cybersecurity posture.

  • Investigations on counterfeit payment devices (as per the payment device fraud act)
  • Malware incidents
  • Email-related digital forensic
  • CCTV video footage enhancements
  • Data recovery
  • Data wiping


We focus on empowering your workforce with the knowledge and skills required to enhance information and security capabilities. We offer comprehensive training programs tailored to your organization’s specific needs and industry standards. Our workshops cover a wide range of topics, including cybersecurity best practices, data protection, social engineering awareness, and secure coding. Through hands-on exercises and engaging learning methodologies, we equip your staff with the expertise to identify and respond to security threats effectively. With our training, your employees become a formidable line of defense, reducing the risk of human-related security breaches and fostering a security-conscious culture throughout the organization.

  • Information and cyber security awareness training
  • Internet and email security
  • Social media security
  • Application security training
  • Forensic training
  • Cyber drills and tabletop exercises

Sri Lanka Computer Emergency Readiness Team | Coordination Centre

Copyright © 2023 SRI LANKA CERT | CC