INFOSEC
1) Identity & Access Management
Identity and Access Management (IAM) services enable organizations to define, develop, implement, and automate information access controls and privileges. IAM ensures only authorized individuals have access to the right data at the right time, for the right reasons.
Identity and access management services enable in the creation of identities for individuals and managing of privilege rights to critical assets based on their roles in the organization. Administrators leverage tools and technologies to track user roles and activities while enforcing policies to govern user access across the enterprise. Single Sign-on and Multi-factor Authentication are the two most common systems used in IAM.
QTEEMS Managed IAM solutions help you resolve access risk management challenges by protecting your organization’s critical IT systems, data, and applications from unauthorized access.
A) Single Sign-on
Reliable integration for SSO to all your web and mobile apps, with a full-featured engine and flexible access policy.
B) Multifactor Authentication
Secure access for all users with two-factor authentication included for all SSO customers.
C) Automation
Ensure faster audits, meet compliance needs, enable rapid provisioning and de-provisioning of users, provide time-based user access, tighten security measures, reduce costs and spend less time manually modifying and syncing information
2 SOC ( Threat Detection & Response )
Security operations support starts with identification of customer requirements, implementation, monitoring, tuning, and utilization of appropriate tools. We understand the challenges associated with keeping an organization secure and we leverage our experience in implementing Security Operations Centers for small and large organizations. QTEEMS SOC provides visibility analysis, and action, not only based on logs, but also based on network packets. We capture logs, network traffic, and analyze them for abnormalities that point to intrusions. We also offer an incident response with the best in class remediation to thwart attacks. We support enterprises in redefining security operations to cope with evolving cyber threats.
A) Incident Response
An incident is an event that could lead to loss of, or disruption to, an organization’s operations, services or functions. Incident management is a term describing the activities of an organization to identify, analyze, and correct hazards to prevent a future re-occurrence. If not managed, an incident can escalate into an emergency, crisis or a disaster. Incident management is therefore the process of limiting the potential disruption caused by such an event, followed by a return to business as usual. Without effective incident management, an incident can disrupt business operations, information security, IT systems, employees, customers, or other vital business functions.
QTEEMS Monitor incoming events for early detection of potential security incidents.
B) SIEM & Security Monitoring
Today’s cyber threat landscape is unprecedented in size and diversity, requiring a change in mindset if enterprises are to protect their key assets (brand, intellectual property, customer data, etc.). Investing in threat detection, and subsequent remediation and response, as well as traditional threat protection are all key to survival.
We Aggregates security events from various sources through SIEM and threat feeds.
Monitoring incoming events for early detection of potential security incidents and performing initial investigation of potential incidents
Our Services Can Help You
Optimize SIEM services through control integration, process mapping, reporting, operations & continuous improvement.
Enable proactive threat discovery by leveraging actionable threat intelligence, threat hunting, and managed deception.
Ensure process improvements through SOC service catalog design, process mapping, automation & transition.
Orchestrate security operations through run book automation, incident response & visualization.
C) Log Management
Centralized and fully integrated facility for storing raw logs from multiple sources and meeting compliance and regulatory requirements Correlation and Threat Intelligence.
Create and Maintain a Log Management Infrastructure
A log management infrastructure consists of hardware, software, networks, and media used to generate, transmit, store, analyze, and dispose of log data. Log management infrastructures typically perform several functions that support the analysis of security log data.
Establish a Log Management Operational Process
The major log management operational process typically includes configuring log sources, performing log analysis, initiating responses to identified events, and managing long-term storage.
Authentication and Authorization Reports
These reports identify successful and failed attempts to access various systems at multiple user privilege levels (authentication). This also includes specific privileged user activities and attempts to use privileged capabilities (authorization).
System and Data Change Reports
These reports identify various system and critical security changes to various information system and networked assets. This also includes configuration files accounts, regulated and sensitive data, and other components of the system or applications
Network Activity Reports
These reports identify system suspicious events and potentially dangerous network activities. This also includes activities that need to be tracked for regulatory and PCI compliance.
Resource Access Reports
These reports identify various system, application, and database resource access patterns across the organization. It can also be used for activity audit, trending, and incident detection.
Malware Activity Reports
These reports summarize various malicious software activities. This also includes events likely related to malicious software.
Investigate threats through malware analysis for unknown or zero-day malware attacks
Critical Errors and Failure Reports
These reports summarize various significant errors and failure indications. Very often, these are with direct security significance.
Failed File or Resource Access Attempts Reports
Failed file or resource access attempts are a broad category that can impact many different job descriptions. In short, failed access attempts are an indication that someone is attempting to gain access to either a nonexistent resource or a resource to which they have not been granted the correct permissions.
Suspicious or Unauthorized Network Traffic Patterns Report
Suspect traffic patterns can be described as unusual or unexpected traffic patterns on the local network. This not only includes traffic entering the local network but traffic leaving the network as well. This report option requires a certain level of familiarity with what is “normal” for the local network. With this in mind, administrators need to be knowledgeable of local traffic patterns to make the best use of these reports. With that said, there is some typical traffic patterns that can be considered to be highly suspect in nearly all environments.
D) Threat Management
Detect and prevent evasive attacks and threats. Utilize threat intelligence systems that suit your business
Sophisticated threat and threat actors need better monitoring, preparation, responses, and capabilities. Attack vectors can steal your data and damage sensitive business assets. Threat management programs can enable the faster detection and response of such threats, preventing large scale data breaches and avoiding collateral damage.
3 Risk Advisory
QTEEMS provides full strategic management of security risk and compliance. QTEEMS offers advisory and managed services to assess risks and to define and implement business-aligned strategies and plans. Our Security Risk Management services include security strategy and transformation, risk and compliance management, enterprise security architecture, security awareness and cyber assurance.
Build an end-to-end capability that meets business goals and transforms your risk management with full situational awareness.
QTEEMS Our experts can help you identify and manage security risks, using a security architecture that enables full situational awareness .We have the expertise to establish cyber security strategies, define roadmaps, develop policies and procedures and manage cyber risks. Our proven methodology leverages several industry standard best practices depending on the region, industry, and context. These best practices include NIST, ISO 27001, SOC, SOX, HIPAA, PCI DSS and partner-specific accreditation.
QTEEMS helps you define and deploy a risk management framework that supports your business objectives and is aligned with the enterprise’s risk appetite.
A) Integrated compliance Management
Our workflows and processes to risk & compliance needs helps your organization to meet the business requirement.
An effective synergy between regulatory compliance needs and business operations can be difficult if multiple regulations and compliance needs are required for business continuity. There is a critical need for an integrated actionable framework, which can prevent disengagement between business functions and help you manage regulatory compliance with ease.
B) Third Party Risk Management
Analyze and control third party risks. Avoid damages. Strengthen relationships.
Minimize your organization’s exposure to risks, manage third party relationships.
Organizations relying more on third party vendors to ensure faster production outcomes, meet tight delivery timelines, and lower costs. However, while expanding their operational ecosystem through third party suppliers to augment their products and services, they get exposed to unforeseen risks.
Risk and compliance objectives are no longer limited to traditional organizational boundaries, rather organizations now responsible for the actions of their third-parties. Third party risk management is the process of analyzing, controlling, and monitoring the risks presented to an organization by a third party vendor.
4 Consulting
A) ISO 27001 -Information Security Management
The ISO/IEC 27000 family of standards helps organizations keep information assets secure.
Using this family of standards will help your organization manage the security of assets such as financial information, intellectual property, employee details or information entrusted to you by third parties.
ISO/IEC 27001 is the best-known standard in the family providing requirements for an information security management system (ISMS).
QTEEMS provides assistance in the implementation of ISO 27001 framework. With a team of experienced information security professionals who are also ISO 27001 certified Lead Implementers and Auditors, we have an in depth understanding of the standard. Our implementation strategy is based on a phased approach:
Phase 1: Gap Analysis — QTEEMS security professionals will conduct an analysis of gaps in your current system against the requirements of ISO 27001 including a physical security review. The observations will be compiled into a report defining your level of compliance and will be used to consolidate the risk treatment plan for the compilation of the Control Implementation Strategy.
Phase 2: Risk Assessment — This is the most crucial phase of the implementation, wherein an asset register containing all the information assets of the organization is built. This involves meetings and discussions with the key stake holders of your organization. A comprehensive risk assessment is then conducted on the critical information assets, based on which appropriate controls to mitigate the identified risks are selected.
Phase 3: Risk Treatment — During this phase QTEEMS will formulate a strategy for the implementation of the controls selected in the previous phase. Also during this phase all the documentation pertaining to the ISMS will be developed. This will include the formulation of Information Security Policies & various procedures supporting the policies. The policies and procedures address the risks identified during the risk assessment phase.
Phase 4: Control Implementation — The implementation roadmap, which is the outcome of the previous phase will guide your organization’s team in the implementation of the identified controls. During this phase QTEEMS consultants will advise and guide the implementation team.
Phase 5: ISMS Readiness Review — This phase will review the readiness of the client to achieve ISO 27001 certification. QTEEMS will guide and prepare the client’s audit team to conduct internal audits. The audit results will be evaluated and gaps, if found will be closed by your implementation team with guidance from QTEEMS consultants.
Phase 6: Certification audit — finally, you will face the certification body’s team of auditors. QTEEMS consultants will hand hold your team during the audit. We will assist you in the closure of any Non Conformities or observations noted by the external auditors and help you in achieving the ISO 27001 certification.
B) HIPAA
The Health Insurance Portbility And Accountability Act (HIPAA) was signed into law in the year 1996, by President Bill Clinton. It is a legislation which provides security provisions and data privacy, in order to keep patients’ medical information safe. The act contains five titles.
Our HIPAA Consulting Services are designed to make this task really easy for you. Whether you are a provider or a Business Associate, our experienced team of HIPAA consultants and healthcare domain experts will make sure that you are 100% compliant with all the rules and regulations enforced by HIPAA.
Most of our HIPAA-HITECH regulatory compliance consulting services are focused around HIPAA Security (Physical, Administrative and Technical Safeguards), HIPAA Privacy, HIPAA Transactions and the Omnibus Rule. Our services include-
HIPAA regulatory compliance consulting
Privacy and Data Breach Notification, Remediation and Management
Meaningful Use Risk Assessment
Security Auditing and Testing
Privacy Auditing and Testing
Gap Analysis
Risk Analysis
HIPAA policy and procedures implementation
Organizational HIPAA Training
C) PCI DSS
The Payment Card Industry Data Security Standard (PCI DSS) is a set of security controlsPCI Qualified Security Assessors developed by an aggregated body of experts from the major card brands. The standard covers the fundamental aspects of information security and extends through the people, processes and technologies involved in payment card processing systems.
PCI DSS is a complex and granular standard that is mandatory for all entities which store, process or transmit payment card data, as well as organizations that may impact the security of a credit card processing environment.
If your organization just wishes to meet the standards outlined in PCI DSS without the need for certification, we offer consultancy services to assist you to reach the high PCI standards.
Our Qualified Security Assessors (QSA) will lead you through the PCI journey from initial review to full alignment with the standard in the most efficient and least intrusive manner possible. This will ensure your business can continue to operate while maintaining a secure payment processing environment.
Our PCI DSS consultancy services includes:
PCI DSS scope determination and scope reduction services
PCI DSS gap analysis and prioritized action planning
PCI Self-Assessment Questionnaire (SAQ)
PCI DSS Report on Compliance (ROC) audit
P2PE implementation assessments
Penetration testing and vulnerability scanning services
Security Information and Event Management (SIEM) services
D) SOC 2 Consulting Services
System and Organization Controls (SOC 2) refers Internal Control over Security, Availability, Processing Integrity, Confidentiality and Privacy .
The System and Organization Controls (SOC) 2 (SOC 2 in short) aims to protect the interest of the user entity while receiving services from the service organization. This is assured by the attestation provided by Certified Public Accountant (CPA) in issuing a Type 1 report or a Type 2 report. Type 1 is an attestation of control testing for a point in time, whereas Type 2 report as a result of testing controls over a period of time.
We have a well-defined 6-phase Methodology, to help an organization achieve successful SOC 2 compliance.
SOC 2 has the following 5 principles, listed below are the principles and their objectives.
Common Criteria Security: The system is protected, both logically and physically, against unauthorized access.
Availability: The system is available for operation and use as committed or agreed to.
Processing Integrity: System processing is complete, accurate, timely, and authorized.
Confidentiality: Information that is designated ‘confidential’ is protected as committed or agreed.
Privacy: Personal information is collected, used, retained, and disclosed in conformity with the commitments in the entity’s privacy notice and with the privacy principles put forth by the American Institute of Certified Public Accountants, and the Canadian Institute of Chartered Public Accountants (CICA).
We have a structured approach to determine the applicable list of risks and controls that are required to achieve SOC 2 attestation. Our approach ensures that the service organization has adequate ‘internal controls’ over applicable security criteria, to assure any Certified Public Accountant (CPA) for issuance of SOC 2 reports.
Get to know our services from our Brouchure
PHASE I – Determination of Objectives
This phase involves determining objectives, from user entity, as well as of the service organisation.
PHASE II -Gap Analysis
This phase involves performing gap analysis of the above listed objectives on one hand, and the applicable SOC 2 controls and risks, on the other. We provide solution for all identified gaps.
PHASE III – Control Design and documentation
This phase involves our methodology that involves distribution of risk, and control responsibility to internal stakeholders. This also includes nomination of key roles such as risk officer – who will drive the ongoing compliance.
PHASE IV -Tracking
This phase involves tracking the client risks, documentation and self-compliance on a weekly basis till all internal controls are adequately implemented.
PHASE V -Performance Tracking
This phase involves showcasing client with changes in a given period by providing change specific score of compliance between 0 -100%. This gives the organisation an evidence of a measurable framework of demonstrating internal controls.
PHASE VI – Internal Audit
Internal audit followed by a formal review of the program gives organisation an independent perspective, and enables them to be ready for final attestation.
At this stage the client has implemented the governance system in completeness. Generally upon completion of one month of this, the organisation can achieve SOC 2 – Type 1 attestation, and upon completion of 6 months, the client can achieve Type 2 attestation. Here the assumption that all risks are under control that will give adequate assurance to the user entity.
E) VA& PT Services
Our security experts use our experience from the front lines of cyber-attacks to simulate the tools, tactics and procedures (TTPs) of real-world attackers that target your environment. VAPT are comprehensive services for security audit, security amendment, recommendation, security monitoring, risk analysis, forensic analysis, and penetration testing.
Network Security Assessment
Cloud Security assessment
Threat and Vulnerability assessment
Wireless Security Assessment
Business Solutions | Company | Partners | Contact Us |
Acknowledgements and Copyrights:
SM CMMI, the CMMI logo, Data Management Maturity (DMM), and SCAMPI are registered marks of CMMI Institute.
ISO® is a registered trademark of International Organization for Standardization.
Six Sigma® is trademark of Motorola, Inc.
All Other trademarks, service marks and copyrights acknowledged.
Copyright © 2013-2020 QTEEM Techno Solutions Pvt. Ltd. Terms & Privacy Policy All Rights Reserved.
QTEEMS® is a trademark registered in Intellectual Property Office (India).