Security Testing for Web Applications – Best Practices

Security has now become a major concern for decision-makers. With an ever-increasing number of attacks and their complexity, it is only reasonable that the decision-makers invest in improving the security of their organization’s technical infrastructure. With web applications playing a pivotal role for many businesses to market their products, conduct business operations, sell products and … Continued

Penetration Testing for ISO 27001 Control A.12.6.1

Out of all the security standards that have been prescribed by various bodies and organizations so far, ISO 27001:2013 has been the most popular one – without any doubt. Containing ten clauses and 114 controls, this standard has also served as a stepping stone for many organizations to improvise their information security policies and procedures. In this … Continued

Penetration Testing and Vulnerability Scanning for PCI DSS

Irrespective of the industry, penetration testing and vulnerability scanning exercises help businesses a great deal when it comes to the security of their technical infrastructure. For businesses processing sensitive data such as credit card data, such practices have more relevance than ever. The foundation for this article was laid by one of our previous articles where … Continued

What is cloud-based application security testing?

In the last decade, cloud computing has completely changed how IT services are delivered. Low maintenance costs and easy-to-set up have been two major factors leading to global adoption of cloud-based services; though security continues to be a hurdle. Cloud security testing has emerged as a new service model wherein security-as-a-service providers perform on-demand application security testing … Continued