VNPT
VNPT
Key Info
Summary
Penetration Testing
Security Operations CentreAbout
VNPT Information Technology Company was established under Decision No. 39/QD-VNPT-HDTV-NL dated March 1, 2018 of the Chairman of Vietnam Posts and Telecommunications Group.
VNPT-IT operates in the field of research, development, and integration of information technology products and services to serve internal services of Vietnam Posts and Telecommunications Group (VNPT) and customers outside VNPT (including International customers) In particular, for the field of information technology, we provide 02 groups including:
1. Information Security Services
– Information security monitoring
– Information security assessment
– Information security training
– Information security consulting and design
– Solutions: Web – VNPT WAF, VNPT Family Safe.
2. Information security solutions:
– Product system model
– Proactive defense solutions
Cybersecurity Focus
Accreditations
Emergency Contact Name
SOC Operator
+8424 32 265 265
VNPT SOC provides MSS (Managed Security Service), which is an InfoSec monitoring and management platform.
VNPT MSS helps protect assets, intelligence, and maintain sustainable profits as well as brand value in thesimplest, most comprehensive and economical way.
Accreditations
The Penertration Testing service offered:
1. Application Penetration Testing
? Web Application Penetration testing: Review and point out vulnerabilities and weaknesses in web applications based on OWASP Top 10 standards.
? Mobile Application Penetration testing: – Review and point out vulnerabilities and weaknesses for mobile applications in popular platform: iOS, Android based on OWASP Top 10 standards for mobile
2. Server Penetration testing
Review, identify issues related to information security on the server including but not limited to: configuration settings, security policies, security holes… Refer to common standards of CIS.
3. Information security awareness Penetration testing
? Evaluation of the practice index of users’ information safety awareness through phishing (organizing a campaign to send fake emails to collect user information)
? Act as a hacker sending emails over the internet environment. Deploy on Cloud environment to ensure mobility, efficiency, ease of deployment and does not affect customer’s existing infrastructure