Pakistan Computer Emergency Response Team

The Security Standard


HOME | ABOUT US | SERVICES | ADVISORIES | RESOURCES | DEFACEMENT ARCHIVE | MEMBERS AREA | TRAINING | CONTACT US

Copyright | Disclaimer

 

 

 


 

PakCERT INFORMATION SECURITY SERVICES

Our world-class security consulting team specializes in tackling and solving the most-challenging information security issues. PakCERT works with customers at any stage of the business cycle, delivering a complete package of services to meet their entire range of security needs. Working with PakCERT, customers can choose between standard solutions and/or custom solutions, delivering proprietary advantages. By developing industry-leading security technology and products, PakCERT has access to the best resources, in terms of both technology and people, to ensure that your IT organization is enriched by our work. Armed with forward-thinking information security talent, your IT organization can take on the following challenges:

VULNERABILITY ASSESSMENT & PENETRATION TESTING
PakCERT Security Assessment & Penetration Testing Services were introduced to provide anyone the means to protect their valuable information assets by giving organizations and individuals direct access to hackers and other IT professionals not usually available for hire. We protect the information assets of our clients through the use of education, technology and experience, while maintaining the strictest levels of confidentiality in the industry. Armed with the latest exploit codes and techniques the underground is using for years to compromise your networks, we use the same techniques to harden your network from such intruder attacks. When you hire PakCERT to provide specialized, objective assessment of your organization’s security vulnerabilities, you get a cracker-jack team of IS consultants who are also IS researchers. That’s because we believe that IS research must be linked to real-world IS problems, and real-world IS problems must influence what we research.

CYBER THREAT INTELLIGENCE
Our Cyber Threat Intelligence provides information on potential threats based on security trends from around the world. This data would allow your organization to proactively defend against possible attacks. We have information on high-risk web pages, hosts, domains, and IP addresses, and can let you know exactly which aspects of your network are likely to be targeted. Our dedicated team of security analysts work around-the-clock to keep our clients protected. These reports are put together from our own research along with research done all over the world, to bring you the most up-to-date and relevant information to help protect your organization and be prepared for cyber threats.

CYBER SECURITY OPERATIONS CENTER (CSOC)
Our cost-effective Cyber Security Operations Center (CSOC), with supporting services, scale and deploy rapidly to ensure information systems and critical infrastructure remain operational. Customers can match their mission to the right set of products and services at scope and scale. The end result ensures the co-ordination of security events and monitoring assets to provide the client with a correlated and centralized security capability.

ISO27001 COMPLIANCE
ISO 27001 is a comprehensive set of controls comprising best practices in information security. It is essentially, in part (extended), an internationally recognized generic information security standard. Managing compliance with ISO 27001 is a complex task. Assessing compliance levels for information systems, and then deriving and implementing plans to become compliant, can by a very intensive process. At PakCERT we focus on the Security Audit Process to ensure business outcomes.

DIGITAL FORENSIC ANALYSIS
PakCERT provides an extensive range of services in relation to the investigation and handling of computer related fraud, abuse and compromise. Whether a computer is integral or incidental to your problem our experienced investigators can assist you from the initial fact finding right through to a successful prosecution or disciplinary action. Working closely with our clients, often under extreme secrecy, we have a proven track record of recovering vital evidence which could not have been found using conventional techniques.

MALWARE REVERSE ENGINEERING
When information in your system is compromised by malicious software, understanding the scope of the problem is an essential part of your incident response. The malicious specimen undergoes a variety of proprietary behavior analysis procedures. The engineer monitors outgoing communication attempts and environmental changes made by the malware. Code analysis is performed on the malware using disassembler and debugger programs. The end result is to determine how the malware operates, take precautions to prevent further contamination, and employ techniques to safely remove the malware

BUSINESS CONTINUITY AND DISASTER RECOVERY PLANNING
PakCERT can help you consider the possibilities and plan for the unexpected. We believe in data disaster recovery plans as a service, because you need experienced experts to help you create a plan. Through our time-tested processes and procedures, we can guide you in implementing an ongoing, sensible, and cost-effective continuity plan. We will show you how to have your business back online in a matter of minutes, hours, or days - depending on your specific business needs.

DEVELOPMENT OF INFORMATION SECURITY POLICIES
PakCERT understands the difficulties associated with developing a security policy and particularly with implementing and operating under new business rules. Fortunately, PakCERT's security policy framework provide standard solutions to typical environments thereby lowering the cost and complexity of policy deployment and business operations. PakCERT also understands the impact on cost, staff, and equipment introduced by new regulations.

ON-DEMAND TRAINING
PakCERT currently provides on-site and off-site trainings on several information security (IS) topics and certifications including but not limited to:

  • Certified Information Systems Security Professional (CISSP)
  • Ethical Hacking/Penetration Testing
  • Digital Forensic Investigation and Evidence Gathering
  • Information Security Management System (ISMS/ISO27001) Implementation
  • Cyber Security Risk Management
  • Security Awareness

We provide training on these IS topics of value to your organization because we believe in the value of having all personnel trained on IS issues that are critical to keeping your business humming. All events consist of detailed view of hacking with live examples!

SECURITY TOOLS & TUTORIALS ARCHIVE
Members get access to our exclusive archive of security tools, tutorials and proof-of-concept exploits.

Please contact us to find out how PakCERT can help you secure your information assets.

SECURITY AWARENESS PUBLIC SERVICES

  • Advisories, alerts and security patches broadcast. Regular updates are made on the site and also sent to people who have subscribed to our mailing list.
  • Security awareness through seminars and presentations in different IT events.
  • Coordinate with ISPs, vendors and other CERTs to find security related solutions.

 

All rights reserved. Copyright© PakCERT 2000-2018