Cyber threats are on the rise and growing in complexity. But, the economy is forcing organizations to drive down their
operational costs while still maintaining an aggressive and proactive security posture. A managed security service provider will take care of security
posture of your organization while you can focus on your business. Managed security services will be the best solution to address the cyber security
issues in a cost effective manner.
Sri Lanka CERT|CC's Managed Security Services extend the security of your business by providing the expertise and support you need to detect, prevent
and remediate any cyber security related threats to your business.
Why do you need a Managed Security Service Provider (MSSP) for your company?
It allows you to focus on your business and be as productive as you can be
Predictable expenses introduce operational stability, proactive management reduces resource unavailability and surprises
Impracticality of hiring information security specialists as in-house staff and keep them trained to run such activities
Functions and features of MSSP can be customized according to the needs of the organization
24x7 availability of assistance from security experts
Prosecution MSSPs are often well connected to law enforcement agencies and can understand what forensic analysis and evidence is required to successfully support up-to-date legal proceedings if required
Security Awareness the MSSP can deal with potential threats and vulnerabilities, attack patterns, intruder tools, and current best security practices as well as issue advance warnings of new vulnerabilities
Sri Lanka CERT|CC is well positioned to provide following managed services. All of these services can be customized according to specific customer requirements and will be reflected in a Managed Service Agreement (MSA).
Vulnerability Assessments
Sri Lanka CERT's Vulnerability assessment services will help an organization to improve its security posture by identifying vulnerabilities before
they become security incidents. Our experts use a proven combination of industry tools, best practices and in-house techniques to probe your network/
devices for vulnerabilities and hence identify potential areas of risk.
We analyze automated scan results and manually verify them to eliminate any false positives before delivering the report. This will help the organization
to implement the recommendations in an efficient and cost effective manner. A detailed report will be provided with findings and recommendations.
Benefits:
Improved security posture through comprehensive vulnerability identification and remediation
Minimizes downtime by identifying vulnerabilities before they become security incidents
Eliminate false positives through expert custom analysis, which accompanies each vulnerability scan
Standard managed vulnerability assessment services will be provided as follows:
Services | Assessments per year* |
Network vulnerability assessment |
2 |
Web site vulnerability assessment |
2 |
Mail server vulnerability assessment |
1 |
Server OS Vulnerability assessment |
1 |
* Can be customized according to the organization's requirements and will be reflected in the MSA.
Penetration Testing
Sri Lanka CERT|CC will provide an Internal and/or an External Penetration testing services which involves simulating real-world
attacks to provide a current view of vulnerabilities and threats to the client's network infrastructure.
These assessments will begin with a discovery process to develop a baseline profile of accessible services, ports and systems as
targets for further internal or external penetration testing.
It will then perform a more in-depth analysis including manual probing to:
Test identified components to gain access to the networks.
Network devices such as firewalls, routers, and switches.
Network services such as web, DNS, email, ftp, etc.
Determine possible impact or extent of access by attempting to exploit vulnerabilities.
A detailed report will be provided with findings and recommendations.
Benefits:
Minimize downtime by identifying vulnerabilities and taking necessary precautions before these vulnerabilities are exploited
Enhanced security of information assets through reduced risk of information leak.
Effectively mitigate vulnerabilities detected through expert guidance from Sri Lanka CERT|CC
Standard managed penetration testing services will be provided as follows:
Services | Assessments per year* |
Network penetration test |
2 |
Web server penetration test |
2 |
Mail server penetration test |
1 |
Database server penetration test |
2 |
Any other servers/services/applications |
2 |
* Can be customized according to the organization's requirements and will be reflected in the MSA.
System Hardening
The purpose of system hardening is to eliminate as many security risks as possible. This is typically done by assessing the systems
against the security best practices.
There may be continuous changes to the information systems of the organization. As a result it may introduce new vulnerabilities due to
misconfiguration, unnecessary software/services etc.
The objective of providing system hardening as a managed service is to take continuous care of the devices used in the computer network
and hence prevent any associated risks.
A detailed report will be provided with findings and recommendations.
Benefits:
Mitigate information security risk by assuring that devices are properly configured
Prevent device downtime and improve productivity
Timely identification and prioritization of vulnerabilities.
Standard managed system hardening services will be provided as follows:
Services | Assessments per year* |
Server operating system hardening |
2 |
Web server hardening |
2 |
Mail server hardening |
1 |
Database server hardening |
2 |
Firewall configuration review |
1 |
* Can be customized according to the organization's requirements and will be reflected in the MSA.
On-site and off-site consultation
This service mainly focuses on incident response. The main purpose of this service is to ensure that the client is not
unduly burdened with day to day information security related incidents.
Services:
Over the phone consultancy
Extended support after normal working hours.
On-site incident handling
Timely attendance to incidents occurring at customer premises
Review of security policies and processes Consultations to advice the client about the maintenance of cooperate security policies
along with procedures and guidelines which are aligned with the day to day business operations
Benefits:
Limited requirement for full-time dedicated security staff
Support provided by domain experts
The organizations policies and procedures will be a living and up-to date document
Standard consultancy services will be provided as follows:
Services | Assessments per year* |
Over the phone consultancy |
As and when they occur |
On site Incident handling |
As and when they occur |
Policy Review |
1 |
* Can be customized according to the organization's requirements and will be reflected in the MSA.
|