logotype
CERT-IN EMPANELED SERVICES
Home CERT-IN EMPANELED SERVICES

CERT-IN EMPANELED SERVICES

The Indian Computer Emergency Response Team is a branch of the Government of India’s Ministry of Electronics and Information Technology. It is the central agency for dealing with cyber security issues such as hacking, and phishing. It strengthens the Indian domain’s security defenses.

In layman’s terms, a CERT-IN certification is a certificate issued by a CERT Empaneled Security Auditor following a thorough security examination. An audit of this nature must include all components of the organization’s network – websites, systems, apps, and so on. 

CERT-In Certification Process Overview

  • Step 1 –A full level 1 audit of your website, network, or applications is performed, followed by a detailed report.
  • Step 2 – After patching, a level 2 re-testing audit is performed, and all patches and fixes are verified.
  • Step 3 – The CERT-In Security Certificate is issued, together with required supporting paperwork and compliance reports for your customers and partners.

The CERT-In Certification is a mandate for:

  • Businesses that host any application or portal at the National Informatics Centre (NIC)
  • Businesses that offer software, hardware, or services to the Government of India
  • Businesses or software that falls under the mandates of the RBI Cyber Security Framework for Banks
  • Businesses that host any application or portal at the National Informatics Centre (NIC)
  • Businesses that offer software, hardware, or services to the Government of India
  • Businesses or software that falls under the mandates of the RBI Cyber Security Framework for Banks
  • Companies or software that are subject to the SEBI Cyber Security and Cyber Resilience Framework.
  • Companies or software that are subject to the UIDAI obligation - AUA KUA Compliance
  • Anyone selling, licensing, or deploying software or services for any entity subject to the ISNP Security Audit obligation under the IRDA.

    Service Request Form

    Select Service(s) You Want:

    Information & cyber security program strategy & roadmapEnterprise & cyber security risk assessment & managementThird party risk managementVirtual CISO serviceCyber security awareness programPhishing simulation programThreat modelingUser access governance & certificationIncident management and response planISO 27001/22301/27701/9001RBI master directionNHB cyber security guidelinesIRDAI cyber security guidelinesNIST FrameworkSOC1/SOC2Data localization as per RBI circular of storage of payment system dataCIS frameworkInternal audit managementCloud assessment as per CISDesigning cloud security architectureCSPM security monitoringGap assessment as per applicable guidelinesNetwork architecture reviewFirewall rule reviewFirewall configuration reviewSystem hardening checksVulnerability assessment program managementWeb application penetration testingMobile application penetration testingInfrastructure vulnerability assessmentAPI vulnerability assessmentAPI fuzzingRed teaming ExerciseData protection advisoryData flow diagramDigital personal data protection acData protection controls implementationData discovery and classificationDesigning of data protection policyData governance programDigital personal data protection acGap assessmentArticulation of policy and proceduresISO 27001/22301/27701/9001, PCI-DSS, SOC1/SOC2, COBIT, COSO, HIPPA, RBI, IRDAI, NIST, Data Localization, CISGRC tool implementationArticulation of BCP plan and strategyCrisis management planBCP/DR planning and implementationImplementation of BCMS standard (ISO 22301)Conducting actual and tabletop DR drillsFunctional recovery planGRC resource deployment onsite/offsiteSecurity services resource deployment onsite/offsite

    Contact Details:

    Name (required):

    Organization Name (required):

    Email (required):

    Contact No (required):

    Detail about the requirement (optional):