Struggling with GCSx CoCo?

GCSx CoCo compliance isn't easy, especially given current financial pressures. Visit our GCSx CoCo Health Check section to find out how we can help you comply with CoCo 4.1 while saving money.

Contact Us

Call us on +44 (0) 1256 830 146 or use the form below.

Email: *
Message: *

Send me a copy

^*These fields are required.

• Home
 
• Services
 
• Application Security

Application Security

Our Application Security Testing offerings provide a project and developer-focused service delivered by application security experts. Our services range from common web-based application security testing through to detailed specialised SAP Security reviews that go deeper and further than anyone else.

Our Application Security Testing offerings are discussed below. If our services don’t quite cover the areas you’re looking for, our Tailored Assessment Service may be more well-suited to your requirements.

Web-based Application Security Test: Following our standard methodology our consultants review your web-based application to identify weaknesses across all versions of the OWASP Top 10 and more. These vulnerabilities are then exploited by team members with specialist language and framework knowledge. In the event of successful compromise the client is notified and is provided with the information needed to address the vulnerability in question and where time allows, the issue is retested to confirm that fixes are valid.

Binary Application Security Test: Our TAS team includes expert code reviewers and reverse engineers, from Ada to ZPL, ARM to Z80, our consultants have the capabilities to provide assurances that your application, Operating System or Embedded platform appropriately protects data. Our team follow a standard approach based upon your requirements involving breaking the application down into functional areas, documenting calls and branches and identifying areas of user-supplied input before attempting to exploit any potential weaknesses identified.

SAP Security Review: Using our team’s specialist SAP knowledge developed over 5 years of SAP security assessment experience we drill deeper than any other UK-based information security consultancy to tell you what’s really happening. We don’t just stop at authorisations, our consultants look at RFC usage, Transport security, customisations down to the ABAP and Java code level and more. If you need assurances that your SAP roll-out is secure, you need a Mandalorian SAP Security Review.

There are many reasons why application security testing is conducted; including, but not limited to:

• ◈ Part of a regulatory compliance management process (for example, Sarbanes-Oxley, FSA, or PCI)
• ◈ Accreditation and certification
• ◈ To establish the effectiveness of application security controls
• ◈ To provide customers with assurances surrounding application security
• ◈ To qualify business cases for security expenditure and;
• ◈ As part of a project get-well plan

Regular application security testing with a trusted security partner helps internal delivery and development teams improve code quality and reduce bugs in code. Mandalorian focus on skills transfer to developers and project teams in order to reduce the number of vulnerabilities encountered in the future.

Call us now on 01256 830 146 or e-mail us at sales@mandalorian.com to discuss your requirement and how we can help.