Information Technology Security Research Center (CIBIT)

CIBIT ("Information Technology Security Research Center") is a consulting company that has accumulated expertise and helps organizations meet information security requirements since 2009.

Areas of activity

The main activity for June 2022 is the provision of a comprehensive service for:

• preparation of organizations for obtaining licenses of the FSB of Russia and FSTEC of Russia,
• preparation and obtaining of an assessment of compliance with the requirements of the Central Bank of the Russian Federation in the field of information security, certification of informatization facilities, recruitment of qualified personnel and employment of specialists in the field of information security, training of employees according to programs corresponding to licensing requirements.

Services

CIBIT offers the following services (as of June 2022):

• Licensing Consulting,
• Recruitment and construction,
• Storage of licensed artifacts,
• Additional vocational education,
• Certification of informatization objects,
• Information security audit,
• Compliance of personal data processing in the company with the requirements of the legislation,
• Complex for financial and credit institutions,
• Protection of managers' offices,
• Selection and supply of instrumentation,
• Issue of electronic signature,
• Penetration testing,
• Developing a threat model.

Composition of CIBIT GC

As of June 2022, the CIBIT Group of Companies includes: "CIBIT Personnel Agency" and "CIBIT Training Center."

The Personnel Agency CIBIT is responsible for the recruitment and employment of specialists in the information security and IT industry, including for compliance with the requirements of regulatory bodies: the FSB of Russia, the FSTEC of Russia, the Central Bank of Russia, Roskomnadzor, etc.

Since 2009, the CIBIT Training Center has been carrying out activities on additional professional education, being a specialized training center in the information security and IT industries. The CIBIT Training Center offers the following training formats (as of June 2022):

• Professional retraining (Program scope over 500 hours, professional retraining diploma, distance learning, group training),
• Advanced training (Program scope from 72 hours, certificate of advanced training, distance learning, training in groups),
• Short-term courses and seminars (Program scope from 4 hours, letterhead certificate, face-to-face/distance learning, individual/group training),
• E-courses (Program scope from 20 hours, certificate/certificate, distance learning, individual training)

History

2014

About the Company

According to information for 2014, the Center for Security Research information technology (CIBIT) - Russian integrator information security in the field and construction of information systems of any level of complexity.

CIBIT employees have a higher basic education of specialized universities in Russia, whose competencies are confirmed by Russian and international certificates in the field of IT and information security. Applying deep theoretical knowledge in practice, the CIBIT team effectively implements projects for the development and implementation of information systems and technical information protection systems, including using cryptographic protection systems.

A customer-oriented approach, accreditation of regulatory bodies (FSB, FSTEC), an implemented quality management system (clear organization of business processes, quality of work performed and timely provision of results to the Customer), the status of a partner and dealer of manufacturers of information protection tools allow CIBIT to successfully implement projects and solve the tasks of each client.

Complete services to prepare the organization for obtaining licenses

In 2014, the Information Technology Security Research Center (CIBIT) provided support services for organizations when obtaining the following types of licenses:

• License of the FSB of Russia to carry out activities related to encryption (cryptographic) means;
• Licenses of FSTEC of Russia;
• Licenses of the FSB of Russia for the implementation of work related to the use of information constituting a state secret.

The main requirements for license applicants are:

• Package of regulatory and administrative documents prepared in accordance with the requirements of the legislation;
• Availability of a part of the Customer's information system certified according to the requirements of FSTEC of Russia (for example, an automated workplace);
• Availability of qualified personnel.

Scope of services provided:

Consulting services:

• Audit of the current state of the Customer's affairs in terms of readiness for obtaining licenses;
• Preparation for submission to the licensing authority of documented information justifying the Customer's availability of the necessary conditions for carrying out the declared types of activities;
• Preparation of a package of regulatory and administrative documents to ensure the declared types of activities in accordance with the requirements of the licensing authority;
• Preparation of the Customer's management and personnel for inspection by the licensing authority's commission;
• Providing methodological assistance in the elimination of deficiencies noted by the licensing authority.

Training conducted by the "CIBIT Training Center":

• Under the program "Technology and means of ensuring computer security" (540 hours), agreed with the FSB and. FSTEC Russia After completing the training, diplomas of prof. retraining.
• According to the author's program "Technologies and means of protecting information at informatization facilities" (102 hours), agreed with the FSB and FSTEC of Russia. After completing the training, a certificate of advanced training was issued.

Qualification activities:

• Organization of inspection of a part of the information system, test bench or automated workplace, etc.;
• Organization of supply, installation and configuration of information protection software and hardware, etc.;
• Organization of certification tests in accordance with the methods; FSTEC Russia
• Organization of issue of the required organizational, administrative and other documentation;
• Organization of issuance of certification documents (including Certificate of compliance with information security requirements), etc.