Organizations must have a clear understanding of how secure their applications are. But what is the best approach to maximize their value and level of security assurance?
There are several ‘traditional’ ways by which security assurance can be achieved for applications. This includes black-box penetration testing, threat modelling, code reviews, etc. But in the real world there are constraints such as time, cost and amount of information that can be shared with third parties. Whether you are coming from a boardroom, technical or compliance background, the question is always “how can we get a high level of security assurance and still work within these constraints?”.
This talk discusses a process of security testing referred to as “Hybrid Security Assessments” – an integrated approach to provide flexibility and maximize value. Using real life examples from previous assessments, we will discuss some security issues which would likely have been missed with the usual ‘traditional’ black-box penetration testing approach. Lastly, we will explore some of the tools and techniques we have developed, which enable us to provide clients with maximum coverage within limited timescales.
In this webinar you will learn:
- How to make an informed decision when requesting penetration tests
- Understand the benefits of hybrid security assessment over traditional black-box
Who should attend:
- Information security professionals
- Risk, compliance and audit professionals
We have collected and summarized some of the top questions we received from this webinar. Read our TECH Talk Q&A > Penetration Testing here.
About this series:
Stay top of your proactive cybersecurity defences with our 30-minute TECH Talk webinar series. This monthly series will feature brief 30-minute discussions with cybersecurity experts who will present different technical testing solutions and provide actionable ways for organizations to proactively sharpen their cyber defences.