Snapshot of skills and competence of CERT-In Empanelled Security Auditor

1. Name, Location of the Empanelled Security Auditing organisation : Microland, Bangalore
   
   
2. Carrying out Information Security Audits since : December 1998
   
   
3. Technical manpower deployed for security audits :
   CISSPs : 3
   BS7799 / ISO27001 LAs : 6
   CISAs : 2
   DISAs / ISAs : 0
   Total Nos. of Technical Personnel : 25
   
   
4. Outsourcing of External IT Security Auditors / Experts :   No
   
   
5. Security Audit Tools used (owned, in possession) :
   Freeware :  12
   Commercial :  0
   Proprietary: 0
   Total Nos. of Audit Tools : 12
    (Click here for details of the audit tools) 
   
   
6. Security Audit Methodology : BS7799, OSSTM, Own
   
   
7. Security Audits carried out since empanelment till now :
   Govt. : NA
   PSU : NA
   Private : NA
   Total Nos. of Security Audits : NA
   
   
8. Business domain of auditee organisations : Petro, Banking, Insurance, BPO
   
   
9. Typical applications in use by auditee organisations : Core Banking, SAP, Workflow
   
   
10. Typical bandwidth (maximum) of any auditee organisations :
    Internal Bandwidth (LAN / Intranet) : 8 Mbps
    External Bandwidth (WAN / Internet) : 4 Mbps
    
    
11. Networked Infrastructure details of an organizations audited with most complex network :
    No. of servers : 243
    No. of Computer Systems  : 6000
    No. of routers : 0
    No. of switches :91
    No. of firewalls : 4
    No. of IDS' : 4
    
    
12. Ability to carry out vulnerability assessment and penetration test : Yes
    
    

Key : NA = Not Available (data not provided by the CERT-In empanelled Information Security Auditing Organisation).