Qadit Systems & Solutions Pvt Ltd has been empanelled by CERT-In as one of the few qualified IT Security Auditing organisations in the country.
Qadit System’s expertise and experience in the areas of Vulnerability Assessment and Information Security audit has ensured its inclusion in this very select list of firms that are empanelled currently. This re-empanelment is an acknowledgment of Qadit System’s technical expertise in areas of Information Security.
Indian Computer Emergency Response Team (CERT-In) is a national initiative to tackle emerging challenges in the area of information security and country level security risks and vulnerabilities. CERT-In is coordinated by Department of Information Technology, Ministry of Communications and Information Technology, Government of India in cooperation with several agencies in the Government, Academia and Industry. The mission of CERT-In is to enhance the security of India’s communications and information infrastructure through proactive action and effective collaboration.
CERT-In has created a panel of ‘IT Security Auditors’ for auditing, including vulnerability assessment and penetration testing of computer systems & networks of various organizations of the Government, critical infrastructure organizations and those in other sectors of Indian economy.
As part of its efforts to create a panel of qualified IT Security Auditing organisations, CERT-In had adopted a stringent evaluation process with a prime motive to verify and assess the technical skills and capabilities of the participating organizations to be able to perform information security audits from a people, process and technology perspective.
The Technical Evaluation Committee (TEC) had conducted a practical Vulnerability Assessment test with a predetermined and known set of vulnerabilities which the participating companies were to identify. The participating companies had to conduct a Vulnerability Assessment on a test bed comprising of a Web Server on a Windows 2003 Server OS with a web application running on it, as well as on a Mail Server hosted on a Red Hat Linux OS. The participating organizations had to identify atleast 90% of the vulnerabilities present to be successful in the test.
Qadit Systems was first empanelled by CERT-In as a qualified Information Systems Auditor as early as April 2006 when the number of empanelled organizations were 76. The empanelment process is reviewed periodically by CERT-In. For the current period the empanelment process was made more stringent and challenging and hence the number of organizations that have made the grade till date is only 28 as against the earlier 76. The list of empanelled auditors can be found at http://www.cert-in.org.in/panelofauditors1.htm
Some interesting facts about these 28 organisations:
- Location wise
o Delhi, Gurgaon, Noida – 9
o Mumbai – 8
o Bangalore – 5
o Chennai – 2 (including Qadit Systems)
o Hyderabad – 2
o Kolkata – 1
o Gujarat – 1
- Of the 28 organisations that are empanelled currently, 19 organisations including Qadit Systems were present in the original empanelled list, while 9 of the currently empanelled organizations are first-time entrants to this list.