AAA Technologies wins ₹28.99 lakh VAPT audit order from Punjab & Sind Bank
AAA Technologies Limited secured a ₹28,99,400 order from Punjab & Sind Bank for VAPT Audit Assignments in FY 26-27. The contract covers audits for critical and non-critical IT systems, web applications, and cloud infrastructure. The company must start the audit within five working days and bear all travel and lodging expenses.

*this image is generated using AI for illustrative purposes only.
aaa technologies has secured a work order worth ₹28,99,400 from Punjab & Sind Bank to conduct Vulnerability Assessment and Penetration Testing (VAPT) Audit Assignments for FY 26-27. The order encompasses a comprehensive audit of the bank's IT infrastructure, including critical information systems, web applications, and cloud platforms.
The scope of work includes annual audits for non-critical information systems and half-yearly audits for critical systems located in the De-Militarized Zone (DMZ). Additionally, the contract covers web application security audits, configuration audits of operating systems and databases, and external penetration testing of public IPs. The bank reserves the right to vary the number of units audited by up to 10% without additional cost.
The audit assignments cover approximately 18 critical IT and security applications, 35 other risk-categorized applications, and 125 external and internal URLs, including mobile applications. The inventory also includes three data centers, 250 APIs, and 2,000 IPs across various categories such as server, OS, and virtual IPs. The total cost of ownership is finalized at ₹28,99,400, excluding taxes.
AAA Technologies is required to deliver all requirements stated in the scope of work and adhere to the timelines, payment conditions, and penalties outlined. The company must commence the audit project within five working days of receiving the Engagement Letter cum Purchase Order. The firm, a Cert-In empanelled auditor, had previously signed a contract with the bank under Bid No. GEM/2024/B/5579094 dated November 6, 2024.
The engagement mandates that AAA Technologies bear all expenses related to travel, lodging, and boarding for its audit team during visits to the bank's branches or vendor locations. The company must also acknowledge acceptance of the purchase order within four working days.
Scope of Audit Assignments
| Sr. No. | Particulars/Category | Frequency of Audit | Total Cycles in a Year |
|---|---|---|---|
| 1 | VAPT (Vulnerability Assessment and Penetration Testing) | Annual - Non-critical; Half Yearly - Critical/DMZ | 1 - Non Critical; 2 - Critical/DMZ |
| 2 | Web Application Security Audit | Annual | 1 |
| 3 | Configuration Audit of OS & Databases | Annual | 1 |
| 4 | Secure Configuration Audit of Cloud Application, Network Devices, SOC Devices, IT Security Devices | Annual | 1 |
| 5 | External Penetration Testing (EPT) - Public IP | Annual | 1 |
| 6 | Mobile Application Security Audit | Annual | 1 |
| 7 | API Security Testing | Annual | 1 |
| 8 | Source Code Audit of In-House Applications | Annual | 1 |
Historical Stock Returns for AAA Technologies
| 1 Day | 5 Days | 1 Month | 6 Months | 1 Year | 5 Years |
|---|---|---|---|---|---|
| +0.71% | +1.74% | +4.37% | +2.65% | +15.06% | +160.41% |
Will this engagement with Punjab & Sind Bank serve as a catalyst for AAA Technologies to secure similar public sector banking contracts in FY 26-27?
How will the requirement to audit 250 APIs and 2,000 IPs impact AAA Technologies' resource allocation and operational margins for this project?
Does the inclusion of cloud platforms and mobile applications in the audit scope signal a strategic expansion of AAA Technologies' service offerings beyond traditional IT infrastructure?































