Scribd
Upload
24 views

CDO Weekly Slide For Defensive W23.

Uploaded by

vamnugget
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PPTX, PDF, TXT or read online on Scribd
24 views

CDO Weekly Slide For Defensive W23.

Uploaded by

vamnugget
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PPTX, PDF, TXT or read online on Scribd
You are on page 1/ 7

Security Dashboard Volume Metric W23​

(Successfully Handled and Managed)

VPN Deprovision Email Spam & Drop

VPN ISE
VPN Forti Total Traffic Blocking in IPS

Anti DDoS Automation


Automated Blocking when WAF Protection
DDoS Attack happen
Secure email Apps Protected using Web
Cyber Sec Change Request Application Firewall
Gateway
and Service Request DDoS Prevention IPS
IDM Deprovision
CR 155 16k
SR 59 3I58 2.4M+
WAF
Firewall
VPN Virus, Malware
Total Blocked Data Trojan Cleansing
Loss Prevention 214 31M+
81
WEB 625
Email 189 MFA NAC Findings have been
resolved on google SCC
DLP IDM
Findings Pentest and PAM
VA Remediated • Critical 442
814 94 • High 1368
VA
Antivirus 2952
Medium 246
Threat SIEM Alert Detected
Hard 2
59 SCC Intelligent
248 Monitoring (24x7) • IT and Telco

Penetration Vulnerability Incident Reporting, 50k+ SIEM


Testing Assessment Defence Detection, Response Outside Threat Protection
Perimeter Security
OFFENSIVE SECURITY In depth
SECURITY COMMAND CENTER Network Security
Endpoint Security
Application Security
Security Findings and Closure Status As per 18 Jun 2024
Pentest Finding Status Planned Findings Remediated

Remediation Status 5%
Closed Planned Open 16%
Pentest Findings
79% 16% 5%
Critical 2 2 0 0
High 31 16 12 3
Medium 107 92 11 4 79%
Total Findings 140 110 23 7
Note:
Closed Planned Open

Internet Facing Vulnerability Assessment Findings Remediated Planned Findings remediated


Web VA Findings Q1 2024 Closed Planned Open
10% 1% 89%
Total Findings 3416 356 23 3036 10%
1%
Critical 3 3 0 0
High 171 107 (2) 1 63
Medium 3242 246 (246) 22 2973

Note : 89%

Open Planned Closed


Pentest System Vulnerabilities

NO Apps CRITICAL HIGH MEDIUM Aging PIC VP SVP Plan date Remediation
1 Saldomobo 1 <60 Rapik Ramansah Santi Rosana Riza Aditya Kurnia S As discussed saldo mobo will plan upgrade and
pentest again
Start Pentest 14 June 2024
2 Telco Pentest 10 3 >30 Rindu Eka Bakti Luthfi Auzan Agus Sulistio Rindu Eka will coordinate with apps Team relate to
Infrastructure Tarigan do Remediated
3 ISS 2 2 >30 Aled IGB Suardika Yasa Riza Aditya Kurnia S As discussed ISS (Saras) will plan upgrade
The pentest process is running
4 myIM3 Android 82.2.0 2 <30 Muhammad Rifai Arif Nata Prawira Sudheer Chawla Result retest still any 2 finding
New Feature Plan next remediated
5 Qmatic 3 <30 Alief Pujo Arafyanto Henny E. Fibrianty Boyke Marpaung Plan Remediated Aug 2024

6 Dbest 1 1 <10 Relly Suwandana Ganda Pradita Putra Team apps still do remediation
Agung Setyo
Yudha P. Damiat Andi Yura Rahmat Team apps still do remediation
7 Coupa 2 3 <10 Yusuf
myIM3 Android 82.3.0 Muhammad Rifai Arif Nata Prawira Sudheer Chawla Done
8 <10
New Feature

15 15
Vulnerability Assessment Progress Internet Facing
No FQDN CRITICAL HIGH MEDIUM Aging AVP VP SVP Plan date Remediation

1 corebdo1.tri.co.id >10 Irman Aulia Rachman Riza Taufan 2 Critical 11 High Vulnerability Has Been
2 12 13 Remediated
2 wap-test.tri.co.id 0 1 38 >10 Mohamad Agung Bawon Hanif Nurmahdianto Take Down This Month, Done
3 rbt-api.tri.co.id 0 1 7 >10 Mohamad Agung Bawon Hanif Nurmahdianto Take Down This Month, Done
4 rbt.tri.co.id 0 0 9 >10 Mohamad Agung Bawon Hanif Nurmahdianto Take Down This Month, Done
5 rbt-cms.tri.co.id 0 0 9 >10 Mohamad Agung Bawon Hanif Nurmahdianto Take Down This Month, Done
6 myrbt.tri.co.id 0 0 3 >10 Mohamad Agung Bawon Hanif Nurmahdianto Take Down This Month, Done
7 rbt-mobilestream.tri.co.id 0 0 2 >10 Mohamad Agung Bawon Hanif Nurmahdianto Take Down This Month, Done
8 rbt-mobilestream.tri.co.id 0 0 2 >10 Mohamad Agung Bawon Hanif Nurmahdianto Take Down This Month, Done
9 partnerships.ioh.co.id 0 0 26 >10 Ismu Hasyim Eko Sigit Pramudito Maria Kartika Halim Done
10 partnership.ioh.co.id 0 0 27 >10 Ismu Hasyim Eko Sigit Pramudito Maria Kartika Halim Done
11 digitalpartnerships.ioh.co.id 0 0 26 >10 Ismu Hasyim Eko Sigit Pramudito Maria Kartika Halim Done
12 digitalpartnership.ioh.co.id 0 0 27 >10 Ismu Hasyim Eko Sigit Pramudito Maria Kartika Halim Done
13 api-partnerships.ioh.co.id 0 0 27 >10 Ismu Hasyim Eko Sigit Pramudito Maria Kartika Halim Done
14 api-partnership.ioh.co.id 0 0 45 >10 Ismu Hasyim Eko Sigit Pramudito Maria Kartika Halim Done
1 Critical 16 Medium Vulnerability Has Been
15 geotagging.indosatooredoo.com 1 0 38 >10 Kendy Aditya Sumbogo Aris Setiawan Vicky Nugraha Putra Remediated
16 ws.b2b.coportal.ioh.co 0 0 32 <10 Aled IGB Suardika Yasa Riza Aditya Kurnia S 1 High Vulnerability Has Been Remediated
17 coportal.indosatooredoo.com 0 0 4 <10 Aled IGB Suardika Yasa Riza Aditya Kurnia S 1 High Vulnerability Has Been Remediated
1 High 1 Medium Vulnerability Has Been
18 b2bportal.ioh.co.id 0 0 6 <10 Aled IGB Suardika Yasa Riza Aditya Kurnia S Remediated

19 dbest.ioh.co.id 0 2 1 <10 Relly Suwandana Agung Erwan Budiman Ganda Pradita Putra 1 High 3 Medium Vulnerability Has Been
Setyo Remediated
20 mobii.indosatooredoo.com 0 0 26 <10 Eki Hermawan Fahmi Pahlevi Arifudin 1 Medium Plan for Remediation in June
2024
21 partnerapi.indosatooredoo.com 0 1 8 <10 Ismu Hasyim Eko Sigit Pramudito Maria Kartika Halim 18 Medium Vulnerability Has Been Remediated
Vulnerability Assessment Progress Internet Facing
No FQDN CRITICAL HIGH MEDIUM Aging AVP VP SVP Plan date Remediation

>10 Imam Kurniawan Arif Nata Prawira Sudheer Chawla 1 High 25 Medium Vulnerability Has Been
22 im3shop.ioh.co.id 0 0 25
Remediated
>10 Adhi Kurniawan Nunik Tri Handayani Riza Aditya Kurnia S 5 High 5 Medium Vulnerability Has Been
23 hifi-sfa-stg.ioh.co.id 0 0 1
Remediated
>10 [email protected] Hanif Nurmahdianto 1 High 38 Medium Vulnerability Has Been
24 wap-test.tri.co.id 0 1 38
Remediated (Takedown Domain)
>10 [email protected] Hendry Syaputra Sabrina Lee 1 High 7 Medium Vulnerability Has Been
25 rbt-api.tri.co.id 0 1 7
Remediated (Takedown Domain)
>10 [email protected] Hendry Syaputra Sabrina Lee 9 Medium Vulnerability Has Been
26 rbt.tri.co.id 0 0 9
Remediated (Takedown Domain)
>10 [email protected] Hendry Syaputra Sabrina Lee 9 Medium Vulnerability Has Been
27 rbt-cms.tri.co.id 0 0 9
Remediated (Takedown Domain)
>10 [email protected] Hendry Syaputra Sabrina Lee 3 Medium Vulnerability Has Been
28 myrbt.tri.co.id 0 0 3
Remediated (Takedown Domain)
>10 [email protected] Hendry Syaputra Sabrina Lee 2 Medium Vulnerability Has Been
29 rbt-mobilestream.tri.co.id 0 0 2
Remediated (Takedown Domain)
3 19 222
Slide @Dewi Amalia
Update on DLP blocking status - Tentative
Back-Up Slide
Detail

You might also like