Prevention and response to IT incidents
YCERT is a team with multivalent expertise, specialised in prevention, threat intelligence, IT emergency response, information and awareness. It helps organisations protect their most valuable assets by preventing and fixing IT incidents.
It represents a key point of reference for organisations who need to rely on the expertise of qualified personnel, ensuring centralised co-ordination for IT security issues inside the company; in the event of incidents, it provides a specialised response, also providing management for aspects relating to the collection and preservation of digital evidence, including in the case of legal proceedings.
// OUR CERT’S NETWORK OF RELATIONSHIPS
For us, co-operation with all parties engaged in the fight against cyber crime is of the utmost importance.
The signing of a memorandum of understanding in 2016 with the Polizia di Stato (Italian state police) for preventing and fighting cyber-attacks and defending critical infrastructure formalised a long-standing partnership with its Polizia Postale (postal) branch. This agreement provides for sharing of procedures and information to increase the ability to fight and prevent cyber-attacks in the struggle against cyber crime and cyber terrorism.
// YCERT PROFILE RFC 2350
The attached document contains a description of Yarix’s CERT in accordance with the methods provided for by RFC 2350. It provides general information on the CERT, the services it offers and the methods to contact it using a standard format.
Download YCERT PROFILE RFC 2350
Yarix offers its clients the guarantee of a high-quality service, which the team’s numerous certifications also bear witness to: ISO 27001 Lead Auditor, ISACA CRISC (Certified in the Risk and Information System Control), ISACA CISM (Certified in Information Security Management), ISACA CISA (Certified Information System Auditor), ISECOM OSSTMM OPSA (Professional Security Analyst Accredited Certification), ISECOM OSSTMM OPST (Professional Security Tester Certification), EnCase Certified Examiner (EnCE), SANS/GIAC Network Penetration Tester (GPEN), SANS/GIAC Network Forensic Analyst (GNFA), SANS/GIAC Mobile Device Security Analyst (GMOB), SANS/GIAC Reverse Engineering Malware (GREM) e SANS/GIAC Web Application Penetration Tester (GWAPT).