Development Life Cycle (SDLC) Process that defines how software is developed and infrastructure is tested. The process includes reviewing the software development life cycle (Agile, Waterfall, etc.), segmentation of development environment, source code repositories, coding disciplines (Structure, object orientated programming, etc.), and more. Most of the assessments carried out by Eurofins Cyber Security are aimed at the security of (business) applications. Examples are internet banking, patient portals, ticket ordering or securance of insurance contracts over the internet. We will test the application thoroughly for security flaws using automated systems but mainly hands-on analyses and methods. Our ethical hackers will try to enter anything into the application during hands-on testing. They research the source code for security flaws during a code review.
A hybrid of security testing and risk assessment, this assessment is primarily focused on application testing using OWASP as a standard as well as a review of the underlying processing around application deployment.
Application testing is critical for validating deployed application security controls. This assessment is critical for web-facing applications as well for confirming compliance requirements for specific compliance frameworks.