Red Teaming, Architecture Review, Cybersecurity Assessment
Red Teaming
Business Requirement
- To identify attack surface
- Demonstrate impacy of security breach
- Challenge Incident Response Capabilities
Brief Description
- external red teaming is performed without any knowledge about the target, performed OSINT, Dark/Deep Web Scan, Phishing attacks, Exploitation of vulnerabilities and lateral movement
Application Architecture Security Review
Business Requirement
- Identify potential security flaws in initial stage
- Mitigate design level security flaws in application
Brief Description
- Threat Modelling Activity for each App & integration point was performed, potentials gaps identified and recommendations are provided for same
Outcome & Learnings
- Architecture Review as per OWASP ASVS, CWE & Other Best Practices
- External Compliance & Frameworks
ITGC Cybersecurity Assessment
Brief Description
- Detailed cybersecurity assessment was performed and assessment underlying infrastructure was done
Outcome & Learnings
- Identified flaws in policies and procedures
- ITGC audit was performed evidences are collected and report is shared