Software & IT Services |
Capability and Maturity |
IT Governance, Risk and Compliance |
Testing Services |
Technology, Performance and Transformation |
Capability and Maturity : |
Capability Maturity broadly refers to a process improvement approach that is based on a process model and best practices that lead to improved business performance of an organization. It demonstrates organizations capability to consistently provide products and services that meet customer requirements and expectations to enhance customer satisfaction through business processes.
|
Organizations are increasingly depending on process models and best practices to improve business processes. Defining and deploying policies, procedures and guidelines as per various popular standards, models, frameworks such as CMMI-DEV, CMMI-SVC, CMMI-ACQ, ITIL, ISO 20000, TL 9000, ISO 9001, AS 9100, eSCM for quality and service management to control business processes at the organization level. |
ProMinds® provides solutions to help organizations take advantage of such industry proven standards, models and frameworks in isolation as well as in combinations: |
|
IT Governance, Risk & Compliance : |
 |
All organizations and Government departments are increasingly depending on Information Technology (IT) to support their operations. Information Technology became backbone and life line to deliver products or provide services to customers. However, Information Technology is prone to several risks like virus attacks, intrusions, information leakages, IP violations, system failures, errors, fraud etc. |
To address Technology risks, many organizations have been adopting IT governance standards and popular frameworks such as COBIT, ITIL and ISO 27001 to build information security within IT processes. Further, organizations have to re-align their IT processes to comply with several laws and regulations, such as SOX, SSAE No. 16, PCI DSS, PA DSS, HIPAA, HL7, SANS, GLBA, etc., prescribed by Governments and regulatory bodies in different countries. |
ProMinds® is uniquely placed to help organizations in providing IT GRC solutions. ProMinds uses time tested and proven methodology to deliver the following IT Governance, Risk and Compliance (GRC) solutions: |
Service Offering |
Areas Covered |
Information Security Management System (ISMS) |
ISO 27001 |
Business Continuity Management System |
BS 25999, ISO/IEC 27031 and Resilience Management Model (CERT@-RMM) |
Regulatory Compliance |
HIPAA. SAS 70, SOX, HL7, DPA, ITA 2008 |
PCI Compliance |
PCI DSS, PA DSS |
|
Testing Services : |
 |
Network Security is the process of taking physical and software preventative measures to protect the underlying networking infrastructure from unauthorized access, misuse, malfunction, modification, destruction, or improper disclosure, thereby creating a secure platform for computers, users and programs to perform their permitted critical functions within a secure environment.
Today, inbuilt vulnerabilities undermine the security of your IT Infrastructure, Network Assets and Applications across technologies and business domains. Every component and layer in your IT environment is critical, as your network is as strong as the weakest component in the network. Also, a majority of these vulnerabilities are found in the application layer, there is an increased emphasis on application security testing in the traditional platforms and in various mobile platforms. Security testing is no more a discretionary service in the entire product lifecycle as it is rapidly integrated with mainstream testing activities.
ProMinds will assist your organization by performing the Vulnerability Assessment on your network and other critical network components, and performing the Penetration Testing on your network and other critical components of Internal and External networks. Penetration Testing will be carried out either with ‘White Hat’ or ‘Black Hat’ mode, as required.
ProMinds work closely with your team IT Team right from your design through deployment and maintenance of your complete IT environment.
ProMinds perform specialized Web Application Security Testing, Mobile Application Security Testing and Cloud Security Testing as per your organizations requirement. ProMinds uses the guidelines issued by Open Web Application Security Project (OWASP) TOP 10, Mobile OWASP Top 10 and Web Application Security Consortium Threat Classification (WASC –TC) to carry out the specialized Security Testing. The Security Testing will be carried out either with ‘White Hat’ or ‘Black Hat’ mode, as required.
ProMinds will also assist your organization in performing the Secure Code Review of the software applications of your organization. We use the guidelines issued by OWASP Code Review Guide and Microsoft Secure development Lifecycle for .Net Projects. Secure code review is carried out in White Box Testing Methodology.
Service Offering |
Areas Covered |
Vulnerability Assessment |
IT Infrastructure (Network, Firewall, Servers, etc.), BYOD Security, SANS |
Penetration Testing |
IT Infrastructure (External and Internal Networks) , SANS |
Web Application Security |
Open Web Application Security (OWASP) and WASC –TC |
Security Code Review |
White Box Testing of Application Software, OWASP Code Review |
Mobile Application Security |
Mobile Applications, Smart Phones & Devices Security |
Cloud Security |
Cloud - Infrastructure, Servers, Applications (Public, Private & Hybrid) |
|
|
Technology, Performance and Transformation : |
Top |
Today Private and Public Sector Organizations, irrespective of their size, geography and business are facing common challenges, in terms of: |
a. Information Technology & its use within |
b. Performance in terms of its business & employees |
c. Transformation towards increased productivity and better decision making |
|
All these have become inevitable for any business and being a driving force for its increased growth in the global arena. |
ProMinds® is uniquely placing itself to offer services on this front, to help the public and private sector improve their overall business prospects in terms of TPT and ensure that, the investments made on IT and people yield optimum results. |
Service Offering |
Areas Covered |
IT Business Assessments |
IT Infrastructure Design, Hardware and Software, Process Automation, Integration & Interfacing of business functions, technology and protection. |
Six Sigma |
Process Definition, Design and Improvement |
Balanced Scorecard |
Framework Design, Integration and Interfacing, Metrics on Performance and Management Presentation |
PCMM (People Capability Maturity Model) |
Assessment, Implementation and Certification |
|