Information Security audit

mdtech PERFORMS COMPREHENSIVE INFORMATION SECURITY AUDITS OF CORPORATE IT SYSTEMS

In the context of digital transformation in Uzbekistan, an Information Security (IS) audit is a fundamental requirement for protecting critical data. A comprehensive assessment helps identify vulnerabilities before they can be exploited by cybercriminals.

Objectives of the IS Audit:

Current State Assessment: Identifying "bottlenecks" in the infrastructure defense.
Standards Compliance: Aligning processes with international (ISO/IEC 27001) and national best practices.
Regulatory Compliance: Checking readiness for audits by the Cybersecurity Center and Uzkomnazorat.
Risk Mitigation: Identifying threats to prevent financial and reputational losses.

What’s Included in mdtech’s Audit:

Penetration Testing (Pentest): Simulating real-world attacks to evaluate system resilience.
Regulatory Compliance Check:
- Personal Data: Law ZRU-547 "On Personal Data".
- Cybersecurity: Law ZRU-764 "On Cybersecurity" (for Critical Infrastructure objects).
- Banking Sector: Regulations and standards of the Central Bank of the Republic of Uzbekistan.
Security Mechanisms Analysis: Evaluating encryption, access management, and security policies.

Audit Stages:

Preparation: Interviewing the IT team and studying network architecture.
Technical Analysis: Vulnerability scanning, configuration analysis of hardware, and log review (Syslog/NetFlow).
Reporting: Creating a detailed report with risk descriptions and a prioritized mitigation plan.

Sales department
+998 90 111 50 00
From 09:00 to 18:00
Telegram
@+998901115000
E-mail
info@mdtech.uz
Address

Tashkent city Yakkasaray district st. Usmon Nosir house No. 2

Information Security audit

Objectives of the IS Audit:

What’s Included in mdtech’s Audit:

Audit Stages:

Sales department

Telegram

E-mail

Address

Network equipment

Servers and data storage systems

IP telephony and video conferencing

Software

Engineering infrastructure