MTS RED: Audit of practical security of companies and proactive protection against cyber threats

Main article: IT outsourcing

2023: Launch of proactive cyber threat protection services

MTS Cybersecurity announced on March 28, 2023 the launch of services for auditing the practical security of companies and proactive protection against cyber threats. The range of services is selected individually under the customer and may include pentest tools, Red Teaming and Purple Teaming - services that are practically not presented on the Russian cybersecurity market.

The team of security analysis MTS Cyber security"" includes the main specialists industries with extensive experience in implementing projects in large companies of various industries with recognized international ones. certificates

Illustration: it-world.ru

The security analysis team of MTS Cybersecurity specializes in proactive protection services against cyber threats - comprehensive verification and debugging of processes for countering cyber attacks (Purple Teaming) and checking the possibility of bypassing the company's protection measures and the penetration of a cybercriminal into the corporate infrastructure (Red Teaming). At the same time, experts can imitate the actions of specific hacker groups, including those specializing in the banking, industrial or other sector of the economy. This allows companies to verify how fully and effectively its defenses detect the most relevant and complex attacks relevant to a particular industry. Thanks to this, the decrease in possible losses from targeted cyber attacks of a large company for a period of five years is over 10 billion rubles, and the efficiency of using information security resources increases by 20%.

The market for security analysis and proactive protection against cyber threats is one of the fastest growing. The departure of Western vendors, the inaccessibility of security updates and the emergence of various vulnerabilities have led to the fact that companies cannot objectively assess the real level of their own protection against cyber attacks. At the same time, infrastructure penetration tools are widely available on the dark web and do not require serious financial investments. For companies, this means the threat of financial losses, business continuity, reputational and regulatory risks. Only direct financial damage from cyber attacks reaches an average of 10% of the net annual profit of companies. Therefore, security testing becomes mandatory for those organizations that are an attractive target for attackers - government bodies, banks, critical information infrastructure facilities and other companies whose information theft can be monetized, Alexey Kuznetsov, technical head of security analysis at MTS Cybersecurity, spoke.

The range of proactive protection services is selected taking into account the tasks and maturity level of the customer, as well as the model of the intruder and the scope of the tested infrastructure segments. Depending on this, services can include both a basic set of activities (vulnerability scans, external and internal penetration testing) and full validation, including cyber training and regular Purple Teaming testing of security controls. It implies a tight interaction between the attacking team and the company's information security service. Based on the results of the check, the attackers generate a test progress report and issue recommendations, thanks to which companies can improve scenarios for detecting malicious actions in the infrastructure. After this action, the protection teams improve and can be rechecked until they receive full coverage of information security events in the infrastructure and the maximum prompt response to them.

Also, companies have access to classic formats of security analysis services - Red Teaming and pentest. The Red Teaming service allows you to check the daily level of readiness of the company to repel cyber attacks. Since attackers act as secretly as possible, this, unlike Purple Teaming, limits the number of hacking scenarios available for verification, and therefore the number of response scenarios that can be optimized based on the results of testing. However, Red Teaming allows you to give a situational practical assessment of the level of security of the company.

In addition, MTS Cybersecurity experts provide pentest services - checking for vulnerabilities and unsafe configurations of individual information systems of companies - a website, mobile application or other critically significant software. Testing is carried out by the method of "white," "gray" or "black box." The peculiarity of the MTS service is that a team of ethical hackers not only checks for known vulnerabilities, but also identifies zero-day vulnerabilities. The results of the pentest conducted on a regular basis are used as a system metric of the level of security of critical business systems of organizations.

Based on the results of the security audit, companies can receive services from MTS Cybersecurity in the field of consulting on building a secure IT infrastructure, creating internal corporate processes for monitoring and increasing security, round-the-clock monitoring of vulnerabilities, identifying cyber threats and responding to cyber attacks, as well as investigating incidents. This range of services forms a single ecosystem of tools for continuously increasing the practical security of Russian companies under continuous attempts to attack cybercriminals.