Testing verifies how your application security program is performing. Find out how testing can identify weaknesses and identify opportunity for improvement.
A vulnerability assessment is an important part of the Secure Development Life Cycle. In most cases, this type of test is performed by a third party during the testing phase or after the application is released to production. The goal is to identify security risks that the application presents to the company. Jardine Software not only works hard to properly assess the application, but to provide valuable and accurate information to the company to act on. After an assessment is complete, Jardine Software is available to answer questions and work with the client and its developers to fully understand the results.
A penetration test is similar to a vulnerability assessment, however it typically includes exploitation. While a vulnerability assessment does have some exploitation to verify a finding, a penetration test explicitly will exploit vulnerabilities to determine how much access is available. This exploitation helps identify the real risk of the identified vulnerability. Penetration tests may be required for certain compliance standards, such as PCI.
Jardine Software’s unique experience in both security and strong development background gives us an advantage when it comes to assessing applications. Understanding how applications are designed and work make it possible to find those hard to find flaws.
Jardine Software takes a unique method to performing vulnerability assessments and penetration tests. Unlike most companies that cram the testing into a very short period of time, we provide the option to spread the testing window out over a 30 day period. Extending the testing window allows the testers to discover items over time, not rushing to find issues in a 3-5 day span. It also makes knowledge transfer more efficient.
This method gives the client and Jardine Software time to work through identified issues providing the flexibility to handle any situation that may arise. Contact us for more details for an assessment of your web applications.