Information Security Services

Information Security is one of the most critical concerns facing organizations today. Failing to recognize and manage these risks could seriously jeopardize even the most successful business, leaving it vulnerable to costly interruption of operations – or even more serious security hazards. Safeguarding your organization is only possible when you fully understand the types and levels of risk your business faces. We carry out the following security audit activities.

IT Audit and Compliance Services:

C-DAC, help you meet the requirements of all the current and future State, Central Government and International standards and Information security regulations, any newly proposed legislation from Central Government which may apply to your business.
Our programs include:

• ISMS 27002 Services and support to ISO 27001 Services

• OWASP compliance Security audit of web applications and web services

• OWASP compliance security audit of mobile applications

• Infrastructure Security Audit

Vulnerability Assessment & Penetration Testing Services:

C-DAC help you by providing Assessment for several vulnerabilities in Internet and Intranet devices by validating open ports, services, domain names, IP network ranges operating system and applications, to identify systems on the network and
exposed services.
Our program includes:

• Perimeter Security Testing

• System Hardening

• Web Apps Security Assessment

• Vulnerability

• Penetration Testing

• Wireless Network Assessment

Other Security Services:

C-DAC help you in analysis and handling the following

• Incident Handling

• Intrusion Analysis

• Malware Analysis

• Implementation of Security services

• Design & Development of policies , procedures and guidelines

• Risk Management and disaster recovery services

• Business Continuity process development

• Information Security Awareness Training

• High End Information Security training for organizational needs

Use Cases

We have offered security audit services to various government and private organizations of sectors like

• Banking, financial services and insurance (BFSI)

• Power and Energy

• Health

• Defence

• Telecom

• Transpor

• Education

The following are few of our major client are

• Indian Oil

• State Bank of India

• Punjab National Bank

• Power System Operation Corporation Limited – NERLDC, SRLDC, UPSLDC, WRLDC, TSNPDCL etc.,

• Power Grid Corporation of India

• DRDO

• Damodar Valley Corporation

• Life Insurance Corporation

• Bureau of Indian Standards

• Delhi Metro Rail Corporation

Salient Features

The Information security services include the around 20 types of audits but not limited to these.

1. Security Audit and Assessment of IT/ICT

2. ICS/Scada Infrastructure and applications assessment.

3. OT Infrastructure Audits

4. Vulnerability Assessment and Penetration Testing (VA & PT) of IT, ICT, ICS/Scada and OT Infrastructure.

5. VA & PT of Web applications, standalone applications and web services

6. VAPT of Android and iOS mobile applications

7. Source code security assessment

8. Ethical Hacking

9. Compliance Audits

10. ISMS Consultancy

11. Incident Handling

12. Framework based audit

13. Abuse based audit

14. Software Security testing

15. Thick client applications assessment

16. Malware analysis

17. Design & Development of policies, procedures and guidelines

18. Information Security Awareness Training

19. Digital Forensic Readiness Review

20. Comprehensive Security Review.