Security Services

Information Security: Products and Services.

Audit and Penetration Testing

Audit – a comprehensive assessment of the current state of information security, including compliance with legal requirements

Penetration testing – real-world attack simulation of the infrastructure for intrusions, identifying and exploiting vulnerabilities to assess its security

Design of Information Security Systems

Threat modeling and risk assessment

Security architecture design and selection of security controls

Documentation development and process formalization

Development of Information Security Systems

Implementation and configuration of information security tools and technologies

Implementation of measures developed during the design phase

Process implementation and automation of security processes

Certification

Preparation and system certification against regulatory standards

Operation

24/7 Security Operations Center – monitoring, incident response and investigation; malware reverse engineering

24/7 Attack Surface Management – continuous monitoring of the external attack surface

Breach and Attack Simulation – simulation of cyberattacks to assess the real-world effectiveness of SIEM

SIEM configuration, maintenance and detection content development

Cybersecurity services

A certified Cyber Defence Centre can be a winning option for your organization by providing the following services:

24/7 security event monitoring
Event correlation and threat detection
Incident response and investigation
Malware reverse engineering
Cyber threat intelligence
SIEM, NTA, EDR, SOAR
Reporting and metrics tracking

Solutions

Automatic asset discovery and identification (domains, subdomains, IP addresses, shadow IT resources)
Analysis of the attack surface (open ports and services, vulnerability detection (CVE), misconfigurations)
Сontinuous monitoring of changes (new assets, configuration changes, new vulnerabilities)

Results

Complete visibility of the external attack surface from an attacker perspective
Prioritization of vulnerabilities
Monitoring newly exposed assets
Reduced risk of attacks on infrastructure
Practical recommendations for remediation

Solutions:

•
Verify coverage of detection logic (correlation rules)
•
Determine whether there are sufficient data sources for detection
•
Analyze the quality of event normalization
•
Verify completeness of event data from data sources

Result:

•
Real-world testing effectiveness
•
Automated assessment of SIEM configuration and detection content effectiveness
•
Detailed report and practical recommendations
•
Development and implementation of remediation measures

Deployment, configuration, and integration of Kaspersky products

Security architecture, deployment, and configuration – including policies, rules, and detection content
Integration with existing IT and security infrastructure
Staff training – on administration and daily use
Ongoing updates and technical support

SIEM configuration, maintenance, and detection content development

Log source integration & custom parsers (all systems, apps, network devices)
Maintenance – monitoring, updates, performance
Content lifecycle – rules, filters, dashboards, ongoing threat adaptation
Consulting

Certified CDC Services

Attack Surface Management

Breach & Attack Simulation

Penetration

testing

InfoSec solutions

Our advantages

Experience with Complex Telecom Infrastructures

Extensive experience with complex and diverse IT infrastructures of a telecom operator infrastructures of a telecom operator

In-House CDC Certification

Successful certification project for the CDC, delivered fully in-house without external contractors, covering both process development and technical domains, including reverse engineering and penetration testing.

InHouse Built Visibility Solutions

Development of proprietary cybersecurity solutions and services (BAS – practical assessment of SIEM effectiveness; ASM – improving visibility of the organization’s external attack surface).

Owner of Critical Informatization Infrastructure

Compliance with regulatory requirements for the design, implementation, and annual audit of an information security system for a Critical Informatization Infrastructure.

Enterprise SIEM Deployment and Support

Commercial experience in the implementation and support of SIEM systems for large enterprise clients.

In-house expertise in the deployment and integration of security solutions

In-house expertise in the deployment, integration, configuration, maintenance, and update of security solutions from Kaspersky and other vendors within a certified CDC.

Cross-Industry Security System Design

Experience in the design and development of information security systems across multiple industries.

Or write here

info@lifetech.by

More vacancies

Certified Cyber Defence Centre Services

Searching for unknown assets, open ports and new vulnerabilities across a changing external perimeter is a difficult task without continuous automated discovery.

Testing SIEM detection logic against real-world attacks without automated simulation is timeconsuming and often incomplete.

Penetration testing issues

Implementation, administration and development of information security solutions: