Website Compliance Assessment

image01

Our Website Compliance Assessment Service is designed to bring your Website into compliance with consumer protection regulations. Our Website assessment procedures cover each of your product and service lines to provide you with an accurate assessment of your overall compliance performance.

Utilizing our Website Compliance Assessment Service, clients have found this service is more than an assessment; it is a management tool.

Given the complex nature of regulatory compliance, our role in performing an assessment is not only to identify exceptions, but also to make recommendations.

We draw upon extensive experience to make our recommendations. Our recommendations always follow three rules: the requirements to comply must be clear; the solutions must be simple; and the cost must be reasonable.

Many of the data compromises experienced by organizations are related to poor development, configuration and implementation of web based applications. A Website compliance assessment involves our group web application security experts performing a thorough examination of your web based applications (internally or externally facing) for vulnerabilities in development and implementation including the 'OWASP Top Ten':

  • Injection
  • Cross-Site Scripting (XSS)
  • Broken Authentication and Session Management
  • Insecure Direct Object References
  • Cross-Site Request Forgery (CSRF)
  • Security Misconfiguration
  • Insecure Cryptographic Storage
  • Failure to Restrict URL Access
  • Insufficient Transport Layer Protection
  • Unvalidated Redirects and Forwards