Construction and certification of KSZI for ITS of depository institutions "on a turnkey basis"
We offer you the service of creating a comprehensive information protection system of the information and telecommunications system (hereinafter - KSZI ITS) of your depository institution (hereinafter - DI) with confirmed compliance (with receipt of the "Certificate of compliance of KSZI" of the State Special Communications Administration).
The service includes the entire range of "turnkey" works, which are necessary for the creation of KSZI DI, namely:
1. audit of the state of security of the ITS of the State University;
2. creation of KSZI ITS of DI;
3. conducting a state examination of KSZI ITS DI (Certification of KSZI).
As a result of the provision of "turnkey" services for the creation of KSZI ITS DI, you will receive a "Certificate of compliance on KSZI ITS DI" along with an "Expert opinion on KSZI ITS DI."
In the case of ordering a turnkey service, we will perform the following stages of work on the creation of KSZI DI:
"First stage" - Preparation of organizational and administrative documentation of the ITS of the DI, which includes:
• Development of the "Project of substantiation of the need to create KSZI ITS DI";
• The development of the "Draft order on the creation of the KSZI ITS DI";
• Conducting a survey of the information infrastructure of the State University;
• Development of the "Act of examination of the ITS of the DI".
"Second stage" - Development of information security policies of the ITS of the DI, which includes:
• Development of "DI ITS Threat Models" and "DI ITS Violator Models";
• Development of the "Information Security Policy of the ITS of the State University";
• Development of the "Regulations on the information protection service in the ITS of the DI";
• Development of the "ITS Information Protection Plan of the State Duma".
"Third stage" - Development of the technical task for the KSZI ITS DI, which includes:
• Development of the "Technical task for KSZI ITS DI";
• Accompanying the process of approval by the regulator of the "Technical assignment for KSZI ITS DI";
"Fourth stage" - Development of the KSZI ITS DI project, which includes:
• Development of the "Technical project at the KSZI ITS DI";
• Development of "Operational (working) documentation for the KSZI ITS DI";
• Bringing the ITS of the State University into compliance with the "Technical project on the KSZI of the ITS of the State University";
• Making settings of information protection tools;
• Conducting training of users to work with a complex of information protection tools.
"Fifth stage" - Assessment of information security in the ITS of the State Duma, which includes:
• Development of the "Draft Order on the Creation of a Commission for Conducting Preliminary Tests of KSZI ITS DI";
• Development of "Programs and methods of conducting preliminary tests of KSZI ITS DI";
• Conducting preliminary tests of KSZI ITS DI;
• Development of the "Protocol of conducting preliminary tests of KSZI ITS DI";
• Development of the "Draft of the Act on acceptance of KSZI ITS of DI into experimental operation";
• Development of the "Project of the Act on Completion of Experimental Operation of KSZI ITS of DI".
"Sixth stage" - State examination of KSZI ITS of DI (performed by a contracting organization), which includes:
• Development of "Programs and methods of expert tests of KSZI ITS of DI";
• Conducting a state examination of KSZI ITS of DI;
• Development of the "Protocol of conducting expert tests of KSZI ITS DI";
• Development and registration of the "Expert opinion of KSZI ITS DI" with the regulator;
• Obtaining the "Certificate of Conformity of KSZI ITS DI" from the regulator.