Application Form, Guidelines and Criteria for empanelment of Information Security Auditing Organisations by CERT-In
Kindly note that at present the empanelment of Information security auditing organisations buy CERT-In is closed and if, any application / request for empanelment is received here during the closed period, that will be summarily rejected without any further consideration. So far, CERT-In have completed three rounds of empanelment for prospective information security auditing organisations. Last round of empanelment was opened during May 28, 2007 to June 22, 2007 and the empanelment process was completed by September 2007. At present, there is no plan to schedule the opening up of the empanelment again. Whenever, CERT-In decides to open the process of empanelment of Information Security Auditing organisations, a relevant notice will be published at CERT-In’s website. Kindly wait and watch these webpages for the notice regarding opening up of the empanelment.
We have noticed through the querys received here that some organisations link IT Security Auditing Work with the Financial Accounts Auditing Work. Each of the two auditing works are in separate domain and are no way interconnected. This is also clear from our professional qualifications requirements. We are not interested in any financial accounting related professional qualification.
We are compiling the list of email ids of the prospective Information security auditing organisations, interested in getting empanelled by CERT-In. So, the organisations, which are interested in receiving the information regarding the opening up of the empanelment process by email, may send an email in this regard to CERT-In and we shall include these email ids in our emailing list maintained for this purpose. Whenever the empanelment is opened in future, they will be informed through an email in this regard, which will also state the formalities, procedure and guidelines to be followed for empanelment. However, the prospective organisation must ensure that email is not rejected at their end due to quota full, spam, etc., since this will be a single mail directed to all the prospective organisations in our database. With the information provided herein, we feel that there is hardly any scope for any query regarding the opening up of empanelment process and any email regarding it may not be entertained by CERT-In.
CERT-In empanels Information Security Auditing Organisations for carrying out information security audits of laptop, desktop & server systems, network & information security devices and networking infrastructure. The document having the information in respect of procedure, criterion, guidelines, formalities, qualifications of the professional manpower the area of information security, information security audit tools, experience in carrying out information security audits, etc; Application Form with Annexure ‘A’ for empanelment is placed below on this webpage to download for reference and use. The documents are provided here for reference purpose only and does not mean the opening up of the process of empanelment.
Processing of applications for empanelment of information security auditing organisations includes evaluation and assessment of the documents submitted by the applicant organisations to ascertain the applicant organisation's requisite capabilities by an empowered committee called Technical Evaluation Committee (TEC). It takes around 4 to 6 months in completing the process of empanelment depending upon the number of applications received during a round for empanelment.
|
