What is Vulnerability Assessment and Penetration Testing (VAPT)?
Vulnerability Assessment and Penetration Testing (VAPT) is conducted to identify vulnerabilities (weaknesses) that exist in the software, network, hardware and the overall IT infrastructure of the organization. In order to conduct VAPT, we use our vast experience of having successfully conducted 250+ Cyber Security related assignments across multiple states in India.
VAPT typically covers Database Servers, Application Servers, Internet Banking Servers, Mobile Banking Servers, Email Servers, ATM Switch Interface Servers, Host to Host Interface Servers (with Member Banks), H.O Module Servers, AML Application Servers, SMS Interface Servers, CTS Interface Servers, MIS Servers, Domain Servers, Anti-virus Servers, and all other Servers, Routers, Firewalls and Switches – installed in the Data Centre and Disaster Recovery Centre. Apart from this, VAPT also covers ATMs, and desktop computers that are placed at critical areas in Local Area Network (LAN).
In order to conduct VAPT, we use a combination of manual and automated testing. For automated testing, we use industry standard tools used by several organizations globally.
As per the guidelines of RBI and NABARD, Indian banks should get VAPT conducted periodically by qualified external auditors.
We have conducted VAPT of:
- State Co-operative Apex Banks.
- District Central Co-operative Banks.
- Primary (Urban) Co-operative Banks.