With the support and guidance of the CITIC Group, China Entercom worked closely with CITIC Dicastal and its Information Management Department to complete the “2023 Red/Blue Cybersecurity Practices” successfully! From preparation and rehearsal to implementation and conclusion, China Entercom completed the project in three months, and was highly recognized by the management and staff of CITIC Dicastal for its excellent services and performance.
Before the practices, China Entercom set up a dedicated security team, convened preparation meeting, and strictly implemented a cybersecurity framework covering protection, monitoring and response to ensure the robustness of network security. It also gained a clear understanding of CITIC Dicastal’s network assets and internal and external network architecture through a series of preliminary security inspections and preparations, such as collection of exposed/sensitive information from the external network, internal network asset identification, internal and external network penetration testing, weak password screening, security risk inspection of centralized systems, development of defense maps, cybersecurity awareness training and security baseline checks. These processes allowed China Entercom to identify digital assets of CITIC Dicastal and address cyber threats in the internal and external networks timely for the official practices. Meanwhile, CITIC Dicastal also assigned an elite team of professionals to support the project.
A preparation meeting convened for the Red/Blue Cybersecurity Practices
During the practices, China Entercom’s security team ensured the precise implementation of various cybersecurity strategies and measures, and monitored key business systems, important facilities and the network environment in real time, maintaining holistic, round-the-clock protection. During the practices, 436,834 malicious scanning attacks were detected, 26,464 attacks were recorded. A total of 5,313 alerts were issued, 926 security incidents were addressed, 24,208 malicious IPs were blocked, and 124 attempts of password cracking were stopped. Besides, 119 malicious Trojan horses were identified and deleted to halt the operation of the malware. The security team also continued to optimize the process and shorten the response time to ensure the effectiveness of the protective measures, and to prevent network intrusion.
After the practices, issues identified during the process were highlighted and systematically reviewed and summarized to help CITIC Dicastal fine-tune its strategies timely and incorporate regular cybersecurity checks into its day-to-day operations.
China Entercom’s 7x24 Network Operations Center (NOC) and Security Operations Center (SOC)
It is important for businesses to conduct red/blue cybersecurity practices regularly to bolster their defense against cyberattacks. The success of the practices carried out by China Entercom and CITIC Dicastal was attributed to the timely sharing of intelligence by and real-time guidance from the CITIC Group’s information security team, efficient collaboration and organization of CITIC Dicastal’s Information Management Department, and the hard work and dedication of China Entercom's security team. We were pleased to receive a compliment letter from the Information Management Department of CITIC Dicastal afterward, commending China Entercom’s team members, including Hou Yan, Wang Zelin, Zhang Yue and Shi Yanjie, for their professionalism, expertise and effort.
Looking forward, China Entercom will remain focused on the area of cybersecurity. By expanding our scope of protection and enhancing our security services, we strive to continuously optimize our information security solutions and contribute towards the future development of cybersecurity.
Täname Teid päringu eest.