Snapshot of skills and competence of CERT-In Empanelled Information Security Auditing Organisation

1. Name and location of the empanelled Information Security Auditing Organisation : AKS Information Technology Services Pvt Ltd, Noida
   
   
2. Carrying out Information Security Audits since : September 2006
   
   
3. Technical manpower deployed for information security audits :
   CISSPs : 2
   BS7799 / ISO27001 LAs : 3
   CISAs / CISMs: 1
   DISAs / ISAs : 0
   Total Nos. of Technical Personnel : 8
   
   
4. Outsourcing of External Information Security Auditors / Experts : No
   
   
5. Information Security Audit Tools used (owned, in possession) :
   Freeware : 48
   Commercial : 3
   Proprietary: 0
   Total Nos. of Audit Tools : 51
   (Click here for details of the information security audit tools)
   
   
6. Information Security Audit Methodology : OSSTM, OWASP, ISO 27001, ISO 25999, CoBIT
   
   
7. Information Security Audits carried out since empanelment till now :
   Govt. : 19
   PSU : 0
   Private : 3
   Total Nos. of Security Audits : 22
   
   
8. Business domain of auditee organisations : Government, Telecom, BPO, Manufacturing, Defence
   
   
9. Typical applications in use by auditee organisations : Power Control & Distribution, Oracle ERP, NMS, Websites, PKI based Web Applications
   
   
10. Typical bandwidth (maximum) of any auditee organisations :
    Internal Bandwidth (LAN / Intranet) : 1 Gbps
    External Bandwidth (WAN / Internet) : 256 Mbps
    
    
11. LAN Infrastructure details of an organizations audited with most complex network :
    No. of Servers : 262
    No. of Computers : 60
    No. of Routers : 212
    No. of Switches : 162
    No. of Firewalls : 16
    No. of IDS' : 2
    
    
12. Ability to carry out vulnerability assessment and penetration test : Yes

Key : NA = Not Available (data not provided by the CERT-In empanelled Information Security Auditing Organisation).