In this service, client can give (outsource) the complete project or partial projects to Qseap and Qseap IS team will perform the task and completes the project inhouse. During the project, Qseap team will test, plan and document all the finding. We will monitor and manages all processes from finding till the closure of the risks vulnerability and update the reports to customers periodically with status (such as Test ongoing, completed, risk closure etc.) As Qseap takes the responsibility of accomplishing the project,
The client will have the following cost saving benefits:
Equipment and space required to perform the project inhouse will be saved.
Cost of Licensing and purchasing software, tools required for project will be saved.
No need of additional manpower deployment at client, to handle testing, monitoring or managing new tools.
No extra cost or hassle in managing management process. Ensuring smooth functioning of business.
MSSP is divided into three Phases: Assessment, Mitigation and Management:
Assessment: This is the first phase wherein Manual and Automatic assessment will be performed to gather the information such as vulnerabilities, mapping severity level of the finding and grading the risk in accordance with its impact. Consolidated report is made of the findings/vulnerabilities that contains zero false positive which helps to identify business logic issues.
Mitigation: Qseap security researchers and experts will suggest/recommend the mitigation for the vulnerabilities found during the first phase of Assessment. They will support developers or administrator to fix the vulnerabilities.
Management: Qseap team will continuously monitor, test for the existing or any new vulnerabilities periodically, manage and track vulnerability risks until closure through Centralized Vulnerability Management solution.
Appsec as an MSSP
Basically, Appsec testing comprises of three phases as below wherein we will need url of the application on which test needs to be performed along with privileged user credentials in order to access given url.
Assessment of Application security is carried out half yearly for all the applications using both Manual and Automated approach to detect the vulnerabilities present in an application. Testing is an attack simulation that is intended to evaluate the security issues and vulnerabilities exists in an application. All the vulnerabilities or findings are consolidated in vulnerability report. Assessment helps organizations gain a thorough knowledge of application vulnerabilities, their actual risk level and detailed recommendations to remediate them. Tool used for assessment are BurpSuite / Appscan.
The mitigation is recommended, planned and implemented on vulnerabilities that found during the assessment by Manual Mitigation support. In Manual mitigation support our Security Researchers and Coding Experts will help developers to fix the vulnerabilities. However, at times it is not feasible to resolve some vulnerabilities due to business requirements. In such scenario Web Application Firewall (WAF) will be implemented for each application, will do defend against real time hacking attempts and to protect against the vulnerabilities which cannot be fixed in the code manually. Thus, filter out malicious parameters from reaching the application server. The tool use for mitigation is Gamasec’s logic-based analysis engine to detect known, unknown and even modified attacks with industry-leading accuracy. Gamasec’s logic-based detection engine utilizes Semantic, Heuristic, and Pattern Matching Analysis technologies to fully inspect potentially malicious web traffic and results in more accurate (lower false positive) detection for all known, unknown, and modified web attacks.
Vulnerability Management process incorporate with monthly scanning and Vulnerability Management solution. Monthly scanning will be carried out using Gamasec to identify Zero Day vulnerabilities and new issues occurred due to addition of new features in application or change in application code. Centralized Vulnerability Management solution will be provided using SynVM to take load off your team of tracking, managing and driving vulnerability risks to closure.
VACA as an MSSP
Vulnerability assessment and configuration assessment is the service wherein Qseap IS team will review and carry out the configuration audit against the benchmarks created in accordance to your business requirement. Create the complete report of deviations, findings and assist or support your system Admins for closure of the finding.
Baselining – Baselining will be defined and develop as below:
- Creation of Benchmarks – Our security experts will create benchmarks for your Server's OS, Databases, Web Servers, Routers, Firewalls and other security and support systems.
Benchmarks will be created in accordance to the Business requirement.
- Creation of Scan Templates - Nessus/Qualys scan templates will be created for all supported devices in accordance with Benchmarks.
Assessment – Configuration review will be performed both ways – Automated and Manual (on sample based).
- Automated configuration review will be performed using scan templates. Tools used to scan: Nessus and Qualys.
- Manual configuration review will be performed on some devices, which cannot be scanned. It will be sample basis to check the correctness of scan output on sample basis.
Mitigation – Manual Mitigation support will be provided wherein our security experts will guide and provide mitigation support to system admins for closure of the non-compliant issues.
Management Two types of activity will be conducted in management phase:
1. Quarterly Configuration Audit - Configuration Audit will be done quarterly to continuously upgrade Benchmarks, Scan Templates and for continuous closure of issues. Tools used are Nessus/ Qualys.
2. Vulnerability Management - Centralized Vulnerability Management solution will be provided. VM application will take load off your team of tracking, managing and driving vulnerability risks to closure. Tool used to perform this activity is SynVm.
VAPT as an MSSP
Vulnerability Assessment and Penetration Testing as an MSSP is service wherein non-intrusive and Offensive level Pen test will be carried out to enumerate the ports, services and vulnerabilities. Qseap team will assist system and network administrator for closure of the vulnerabilities or risks.
Step by Step Activities to perform VAPT are as follows:
Vulnerability Assessment – VA will be performed through Automated Scan to enumerate the ports, services and vulnerabilities on target systems. Same will be present as under VA report. Tools used for scanning are Nessus and Qualys.
Manual Confirmation – Manual Analysis activity will be performed every half yearly wherein A non-intrusive PT will be done to identify the correctness of issues reported under VA. Multiple open-source tools will be used to perform this activity.
Offensive Level Attack (Optional) - Offensive level PT will be performing to replicate the attack scenarios. This will be carried on UAT systems post manual analysis and with prior approval from customer. Framework used to perform this activity is Metasploit Framework.
Mitigation – Manual Mitigation support will be provided wherein our security expert will provide mitigation support to System and Network admins for closure of vulnerabilities detected.
Management – Two types of activity will be conducted in management phase:
Quarterly Scanning for VA - VA will be carried out quarterly to continuously identify existence of any new vulnerability in the systems. Manual confirmation will also be performed on the same. Tools used for this activity are Nessus and Qualys.
Vulnerability Management - Centralized Vulnerability Management solution will be provided. VM application will take load off your team of tracking, managing and driving vulnerability risks to closure. Tool used to perform this activity is SynVm
”And still may have some questions. I commend Nick for his customer service and supportive, polite manner.”
The Qseap style of life is elementary to perceive because we take everything as a wonder where opportunities, possibilities, adventures, fortunes and ideas pave the way to success and to be the winner which channelizes life for better tomorrows full of promises and that is the way we look at life.