Snapshot of skills and competence of CERT-In empanelled Information Security Auditing Organisation
- Name, Location of the empanelled Information Security Auditing Organisation : Qadit Systems & Solutions Pvt. Ltd., Chennai
- Carrying out Information Security Audits since : April 2002
- Technical manpower deployed for Information security audits :
CISSPs : 0
BS7799 / ISO27001 LAs : 2
CISAs : 10
DISAs / ISAs : 7
Total Nos. of Technical Personnel : 17
- Outsourcing of External Information Security Auditors / Experts : No
- Information Security Audit Tools used (owned, in possession) :
Freeware : 31
Commercial : 0
Proprietary: 5
Total Nos. of Information Security Audit Tools : 36
(Click here for details of the audit tools)
- Information Security Audit Methodology : OSSTM, OWASP, ISACA/ITAF, ISO 27001/27002, COBIT, ISO 25999, SANS, ITIL, OCTAVE, COSO
- Information Security Audits carried out since empanelment till now :
Govt. : 5
PSU : 36
Private : 203
Total Nos. of Security Audits : 244
- Business domain of auditee organisations : Banking, Manufacturing, Telecom, Pharma, Financial Service, Software Development, e-Governance, Microfinance
- Typical applications in use by auditee organisations : ATM Switch, SAP, Web, CBS, NMS, ERP, e-Governance, Web Applications, Payroll, Telecom billing application, Telecom network Monitoring Software, CRM Applications, Payment Portals
- Typical bandwidth (maximum) of any auditee organisations :
Internal Bandwidth (LAN / Intranet) : 100 Mbps
External Bandwidth (WAN / Internet) : 2 Mbps
- Networked Infrastructure details of an organizations audited with most complex network :
No. of Computer Systems : 4500
No. of servers : 60
No. of switches : 75
No. of routers : 1000
No. of firewalls : 30
No. of IDS' : 10
- Ability to carry out vulnerability assessment and penetration test : Yes
Key : NA = Not Available (data not provided by the CERT-In empanelled Information Security Auditing Organisation).