Managed Services

Cyber threats are on the rise and growing in complexity. But, the economy is forcing organizations to drive down their operational costs while still maintaining an aggressive and proactive security posture. A managed security service provider will take care of security posture of your organization while you can focus on your business. Managed security services will be the best solution to address the cyber security issues in a cost effective manner.

Sri Lanka CERT|CC's Managed Security Services extend the security of your business by providing the expertise and support you need to detect, prevent and remediate any cyber security related threats to your business.

Why do you need a Managed Security Service Provider (MSSP) for your company?

• It allows you to focus on your business and be as productive as you can be
• Predictable expenses introduce operational stability, proactive management reduces resource unavailability and surprises
• Impracticality of hiring information security specialists as in-house staff and keep them trained to run such activities
• Functions and features of MSSP can be customized according to the needs of the organization
• 24x7 availability of assistance from security experts
• Prosecution – MSSP’s are often well connected to law enforcement agencies and can understand what forensic analysis and evidence is required to successfully support up-to-date legal proceedings if required
• Security Awareness – the MSSP can deal with potential threats and vulnerabilities, attack patterns, intruder tools, and current best security practices as well as issue advance warnings of new vulnerabilities

Sri Lanka CERT|CC is well positioned to provide following managed services. All of these services can be customized according to specific customer requirements and will be reflected in a Managed Service Agreement (MSA).

Vulnerability Assessments

Sri Lanka CERT's Vulnerability assessment services will help an organization to improve its security posture by identifying vulnerabilities before they become security incidents. Our experts use a proven combination of industry tools, best practices and in-house techniques to probe your network/ devices for vulnerabilities and hence identify potential areas of risk.

We analyze automated scan results and manually verify them to eliminate any false positives before delivering the report. This will help the organization to implement the recommendations in an efficient and cost effective manner. A detailed report will be provided with findings and recommendations.

Benefits:

• Improved security posture through comprehensive vulnerability identification and remediation
• Minimizes downtime by identifying vulnerabilities before they become security incidents
• Eliminate false positives through expert custom analysis, which accompanies each vulnerability scan

Standard managed vulnerability assessment services will be provided as follows:

* Can be customized according to the organization's requirements and will be reflected in the MSA.

Penetration Testing

Sri Lanka CERT|CC will provide an Internal and/or an External Penetration testing services which involves simulating real-world attacks to provide a current view of vulnerabilities and threats to the client's network infrastructure.

These assessments will begin with a discovery process to develop a baseline profile of accessible services, ports and systems as targets for further internal or external penetration testing.

It will then perform a more in-depth analysis including manual probing to:

• Test identified components to gain access to the networks.
• Network devices such as firewalls, routers, and switches.
• Network services such as web, DNS, email, ftp, etc.
• Determine possible impact or extent of access by attempting to exploit vulnerabilities.

A detailed report will be provided with findings and recommendations.

Benefits:

• Minimize downtime by identifying vulnerabilities and taking necessary precautions before these vulnerabilities are exploited
• Enhanced security of information assets through reduced risk of information leak.
• Effectively mitigate vulnerabilities detected through expert guidance from Sri Lanka CERT|CC

Standard managed penetration testing services will be provided as follows:

* Can be customized according to the organization's requirements and will be reflected in the MSA.

System Hardening

The purpose of system hardening is to eliminate as many security risks as possible. This is typically done by assessing the systems against the security best practices.

There may be continuous changes to the information systems of the organization. As a result it may introduce new vulnerabilities due to misconfiguration, unnecessary software/services etc.

The objective of providing system hardening as a managed service is to take continuous care of the devices used in the computer network and hence prevent any associated risks.

A detailed report will be provided with findings and recommendations.

Benefits:

• Mitigate information security risk by assuring that devices are properly configured
• Prevent device downtime and improve productivity
• Timely identification and prioritization of vulnerabilities.

Standard managed system hardening services will be provided as follows:

* Can be customized according to the organization's requirements and will be reflected in the MSA.

On-site and off-site consultation

This service mainly focuses on incident response. The main purpose of this service is to ensure that the client is not unduly burdened with day to day information security related incidents.

Services:

• Over the phone consultancy
• Extended support after normal working hours.
• On-site incident handling
• Timely attendance to incidents occurring at customer premises
• Review of security policies and processes – Consultations to advice the client about the maintenance of cooperate security policies along with procedures and guidelines which are aligned with the day to day business operations

Benefits:

• Limited requirement for full-time dedicated security staff
• Support provided by domain experts
• The organizations’ policies and procedures will be a living and up-to date document

Standard consultancy services will be provided as follows:

* Can be customized according to the organization's requirements and will be reflected in the MSA.