Snapshot of skills and competence of CERT-In empanelled Information Security Auditing Organisation

1. Name & location of the empanelled Information Security Auditing Organisation : MVL Consulting Pvt Ltd, Pune
   
   
2. Carrying out Information Security Audits since : January 2001
   
   
3. Technical manpower deployed for information security audits :
   CISSPs : 0
   BS7799 / ISO17799 / ISO27001 LAs : 2
   CISAs / CISMs: 5
   DISAs / ISAs : 3
   Total Nos. of Technical Personnel : 10
   
   
4. Outsourcing of information security auditing work to external Information Security Auditors / Experts : No
   
   
5. Information Security Audit Tools being used (available, installed and licensed) :
   Freeware : 12
   Commercial : 2
   Proprietary: 0
   Total Nos. of Information Security Audit Tools : 14
   (Click here for details of the information security audit tools)
   
   
6. Information Security Audit Methodology : BS7799, COBIT, OCTAVE, OSSTM, Own.
   
   
7. Information Security Audits carried out so far :
   Govt. : 0
   PSU : 3
   Private : 5
   Total Nos. of Security Audits : 8
   
   
8. Business domains of auditee organisations : Banking, Insuramce, BPO, Manufacturing
   
   
9. Typical applications in use by auditee organisations : Core Banking Solutions, TBA, ATM/EFT, Oasis/IST, Oracle, SAP, Workflow
   
   
10. Bandwidth available with an auditee organisation having most complex network :
    Internal Bandwidth (LAN / Intranet) : 8 Mbps
    External Bandwidth (WAN / Internet) : 4 Mbps
    
    
11. LAN infrastructure details of an auditee organisation having most complex network :
    No. of Computers : 1500
    No. of Servers : 20
    No. of Switches : 50
    No. of Routers : 50
    No. of Firewalls : 4
    No. of IDS' : 4
    
    
12. Ability to carry out vulnerability assessment and penetration test : Yes
    
    

Key : NA = Not Available (data not provided by the CERT-In empanelled Information Security Auditing Organisation).