| Customers: Power bank Kazan; Financial services, investments and audit Contractors: ICL System technologies (Aysiel SR.) Product: Projects of external audit of IT and security (in tch PCI DSS and SUIB)Project date: 2018/01 - 2018/03
|
Large-scale target cyber attacks of Petya.A and Wannacry in 2017 concerned the enterprises of Tatarstan and set thinking seriously over questions of information security. JSB Energobank (PJSC) the first in Tatarstan checked the systems of bank within joint exercises with the ICL SOC center System technologies (enters into ICL Group).
Specialists in information security of JSB Energobank decided to hold cyberexercises according to the level of security of infrastructure of Bank having invited for this purpose experts of the Center of information security monitoring and response to computer incidents of ICL System technologies. By drawing up the program of cyberexercises recommendations and the conducting testing described in international standards were used: OSSTMM, NIST SP 800-115, Penetration Testing Execution Standard.
Cyberexercises are a combined action, experts of ICL ST "is reserved" checked the system of protection of Bank, imitating actions of possible malefactors, specialists of Bank revealed and reflected their attempts. The command of protected won a victory, all attempts of "penetration" were quickly revealed and localized.
Along with a technology component a human factor – very frequent origin of negative effects from cyberthreats, and this factor was also checked during the held cyberexercises. One of the staff of JSB Energobank (PJSC) distinguished suspicious actions and announced them in department information bezopasnostiv a current of 5 minutes after their emergence that is an unconditional record in response to kiberugiroza, both by experience of Bank, and on long-term practice of ICL ST.
Thanks to the held cybermanoeuvers of JSB Energobank (PJSC) checked the readiness for reflection of the relevant computer attacks in practice, and specialists of Bank got new experience and knowledge from experts of StB ICL company result of the held cyberexercises the Bank decided to continue successful experience of cooperation with ICL ST and to attract the Center of information security monitoring and response to computer incidents of ICL ST to a number of tasks of ensuring data protection.
| The site content is translated by machine translation software powered by PROMT. The machine-translated articles are not always perfect and may contain errors in vocabulary, syntax or grammar. Read original article If you find inaccuracies or errors in the results of machine translation, please write to editor@tadviser.ru. We will make every effort to correct them as soon as possible. |