home

BERANDA

about

TENTANG KAMI

services

LAYANAN

others menu

MENU LAIN

Security Talk with a Senior Security Consultant, Iskandar from LOGIQUE

Feradhita (LOGIQUE), SEO consultant :

There's been a lot of news about cyber attacks and crimes in Indonesia lately.

Thalita (LOGIQUE), Sales Representative :

Oh, what news have you come across?

Feradhita (LOGIQUE), SEO consultant :

Well, I read about the Bjorka case and also the recent incident involving the lockbit cybercrime group

Iskandar (LOGIQUE), Security Consultant :

It seems like we need to start raising awareness among business owners, organizations, and institutions about the importance of penetration tests or security audits.

Feradhita (LOGIQUE), SEO consultant :

I'm not familiar with those terms. Could you explain what a penetration test or security audit is?

Iskandar (LOGIQUE), Security Consultant :

Penetration tests are audit activities that simulate cyber attacks, usually conducted by cybercrime experts, against a system.

Feradhita (LOGIQUE), SEO consultant :

So, it's like a real cyber attack?

Iskandar (LOGIQUE), Security Consultant :

Yes, through these tests, we can identify security vulnerabilities in the targeted system and be better prepared for actual cyber attacks.

Feradhita (LOGIQUE), SEO consultant :

Is it really necessary to do this?

Iskandar (LOGIQUE), Security Consultant :

With the continuous advancement of technology, cyber attack techniques are also evolving. Carrying out regular penetration tests are crucial to ensure that the existing security measures in a system are up to date and capable of handling the growing number of cyber threats.

Thalita (LOGIQUE), Sales Representative :

We have received numerous requests to help companies conduct penetration tests.

Iskandar (LOGIQUE), Security Consultant :

LOGIQUE can provide penetration testing and security audit services with experienced and certified consultants in the field of cybersecurity.

Feradhita (LOGIQUE), SEO consultant :

Oh, Can you tell me more about penetration tests? I'm curious to know if LOGIQUE has any special or unique aspects in their service compared to other companies.

Thalita (LOGIQUE), Sales Representative :

As Iskandar mentioned LOGIQUE carries out penetration tests by internationally certificated pen-testers. This ensures that the report and testing procedures adhere to well established standards. In terms of pricing, we believe it’s quite reasonable.

Iskandar (LOGIQUE), Security Consultant :

LOGIQUE has an accomplished development team that consists of back-end developers, front-end developers, devops specialists, and more. In situations where clients require technical advice to address identified security vulnerabilities, our dedicated technical team at LOGIQUE is readily available to provide assistance.

Feradhita (LOGIQUE), SEO consultant :

Can you give me a rough idea how much it would cost?

Thalita (LOGIQUE), Sales Representative :

The cost can vary significantly depending on the scope and type of pen-test conducted. We would need to determine the target object for the test, such as a website, mobile application, network, or other systems. Additionally, the decision between a black box test or a gray box test will also be considered, as these factors influence the overall cost.

However, to provide you with a rough estimate, the price for conducting a pen-test on a simple corporate website would be approximately 30 - 40 million Indonesian Rupiah. It is worth noting that other security agencies may charge over 100 million for a similar scope of work.

Feradhita (LOGIQUE), SEO consultant :

waa that’s a big gap

Iskandar (LOGIQUE), Security Consultant :

I would proudly say that the quality of the pen-test remains the same, as it is conducted by the same certified pen-tester.

Thalita (LOGIQUE), Sales Representative :

We are prepared to offer our assistance to an increased number of companies in Indonesia. Our goal is to provide support to as many companies as possible.

Feradhita (LOGIQUE), SEO consultant :

Sounds good. Can you explain a bit more about black box test and gray box test?

Iskandar (LOGIQUE), Security Consultant :

There are two types of methods used in penetration testing: black box tests and gray box tests. In a black box test, the tester has no prior knowledge of the system being tested, including its infrastructure or source code. The tester assumes the role of a hacker and attempts to exploit the system to identify potential vulnerabilities.

On the other hand, a gray box test is conducted with some knowledge about the system, such as network configuration and basic information. This method reflects a more realistic scenario where attackers may have limited access to the target system. Gray box tests can also simulate insider threats, such as cases where employees lack knowledge about digital threats or intentional insider actions.

Feradhita (LOGIQUE), SEO consultant :

The price may vary depending on the specific type of test required ya?

Thalita (LOGIQUE), Sales Representative :

yes, it does. No worries, once we have a clear understanding of the situation and your requirements, we will be sure to provide you with appropriate suggestions and recommendations.

Feradhita (LOGIQUE), SEO consultant :

Ok, sounds not very difficult to be secured. But That’s it? or are there anything else a company should consider regarding cyber security or penetration test?

Iskandar (LOGIQUE), Security Consultant :

It is indeed not difficult for a client. But on the other hand it is important to have a right understanding that regular assessment / regular penetration test should be carried out.

Thalita (LOGIQUE), Sales Representative :

From me, I’d suggest considering not only penetration tests but also implementing a phishing simulation tool (Cywareness).

Feradhita (LOGIQUE), SEO consultant :

Apa itu alat simulasi phising?

Thalita (LOGIQUE), Sales Representative :

The Cywareness phishing simulation tool is a comprehensive solution designed to assess and enhance employee security awareness and readiness against phishing attacks. It enables companies to send realistic simulated phishing emails to employees and monitor their responses. By using Cywareness, companies can identify potential weaknesses in their employees' ability to detect and prevent phishing attacks and provide appropriate training.

Feradhita (LOGIQUE), SEO consultant :

Is this tool required by the company?

Thalita (LOGIQUE), Sales Representative :

Sure. We have been receiving considerable interest in phishing simulation as well. The potential risks and consequences associated with phishing attacks can be substantial. Hence, we strongly recommend prioritizing the enhancement of employees' literacy regarding phishing fraud. Cywareness serves as an excellent tool to address this need.

Iskandar (LOGIQUE), Security Consultant :

Absolutely! By combining penetration testing with the Cywareness phishing simulation tool, companies can establish a more comprehensive cybersecurity enhancement strategy.

Feradhita (LOGIQUE), SEO consultant :

Thank you for the explanation. I now understand the importance of conducting penetration tests and implementing phishing simulation tools for companies.

Iskandar (LOGIQUE), Security Consultant :

You're welcome. Remember, it's crucial for companies to stay vigilant and consistently implement security measures to protect themselves from phishing attacks and other cyber threats.

Thalita (LOGIQUE), Sales Representative :

If you have any further questions or need assistance with penetration testing, feel free to contact LOGIQUE. We're always ready to help.

Solusi Keamanan Siber
Solusi Keamanan Siber
Logique menyediakan Solusi Keamanan Siber untuk meminimalkan resiko keamanan siber bagi perusahaan Indonesia
See More
Cyber Security Talk
                                    between pak Didi @DTechCorp and Yoshi @LOGIQUE
Cyber Security Talk between pak Didi @DTechCorp and Yoshi @LOGIQUE
June, 2023 in Jakarta
Solusi Keamanan Siber yang Sangat Kami Rekomendasikan untuk Perusahaan di Indonesia.
See More
wa