University of Hormozgan CERT (APA)
 
Fa Sign in

In addition to PenTest service, this center also helps organizations to assess their overall security level. For this, we conduct an approach similar to Information Security Management System (ISMS). As we know, running ISMS usually consumes time and resources so we employ a high-level and fast approach using security checklists extracted from several documents including but not limited to the followings:

  • NIST SP800-12
  • NIST SP800-115
  • NIST SP800-53
  • NIST SP800-171
  • NIST SP800-128

Assessment team investigates documents including organizational charts, processes, and other activities and also evaluates network, host, and data security but in a holistic way. After the general assessment and getting a broad insight, team focuses on most vulnerable parts to have a deeper understanding of why vulnerabilities exist and how they can be resolved. Finally, the team assesses the risk of vulnerabilities and after prioritization, provides the organization propoer remediation strategies.

 

1   1
Visit today: 2    Total visits: 985