Assessment

Industry Snapshot

The application security industry is dominated by firms that rely heavily on automated tools to perform security assessments, the results of which are communicated in templated reports that rank risk levels in terms of low/medium/high. While automated scanning for technical flaws is generally the first step in a security assessment, a thorough assessment should not stop there. A complete assessment of a system requires greater depth and understanding of both the development of the software at the code level as well as the business risks associated with the vulnerabilities that are identified.

Our Security Team Consists of Practicing Software Developers

Denim Group's security experts are practicing software developers. Because they work with software at a code level on a daily basis, they are able to identify logical flaws and offer a depth of analysis that would be impossible to achieve with automated testing alone. They can also provide valuable insight as to the difficulty of remediation that would be required to address any vulnerabilities that are found.

Assessment Services

Denim Group offers complete security assessment throughout the application lifecycle for custom applications as well as third party (ISV) applications.

  • Automated Scanning
  • Black Box Assessment
  • Source Code Review
  • Architectural Analysis
  • Threat Modeling
  • Third Party Software Assessments - ISVs (Independent Software Vendors)
     
    • PeopleSoft
    • SAP

What Type of Assessment Is Required?

Denim Group tailors assessments to the specific needs of its clients. Recommendations and courses of action are determined based upon the perceived risk involved with a particular application and the value of the business assets that are affected by the application or system in question.
 


[Click for more information]

"Thanks for the report - What do we do now?"

Our goal is to produce results-focused, actionable reports that can be easily translated into business decisions regarding risk and remediation. Our team of practicing developers is well-equipped to explain the difficulty levels of the remediation that will be involved, and all reports are customized to address each customer's specific business needs.

Our post assessment goal is to create a remediation path that is efficient and straightforward. Denim Group offers several services, including:
Remediation
Training
Mentorship Program

Contact us for an assessment profile.

Call (210) 572-4400 or email info@denimgroup.com.