636-530-7776
Sales Brochures
Microsoft VSTS/TFS ALM QuickStart
Minimum Path to Automation
Webcast
Quality Programs for Regulatory Compliance

Roy Garris
IconATG Regulatory Compliance Practice Manager

Search IconATG

Web Application Security and Compliance

Description

You have read the news about hackers stealing data and accessing large company sites, but did you know that 30% of all major companies don't protect against intrusion? Web applications are the #1 focus of hackers, because they process customer data, credit cards, and other personal information. And according to Watchfire, Symantec and Gartner, up to 90% of all public facing sites are vulnerable. But how?

Hackers exploit known weaknesses in two primary ways. First to access computers within the firewall with the goal of accessing data. Second to take over customers' computers after they connect to client facing web applications.

Unless you have a plan in place that specifically addresses these vulnerabilities, you are at risk for:

  • Negative Media attention and Brand damage
  • Legal Fees (Reported $3-4 million per occurrence)
  • FTC Penalties (Fines ranging up to $15 million possible)
  • Audits and New Security Spending
  • Customer Lawsuits and Customer Loss
  • Sharp decline in Stock Prices

IconATG consultants are skilled in detecting and mitigating typical security problems before they happen. Our unique expertise in SDLC process improvement, security & compliance, and state of the art tools allows us to quickly identify and diagnose most vulnerabilities. And if a larger problem exists, our architects and process improvement experts can help you build security and quality earlier into your SDLC earlier.

Your reputation is on the line. Find out if you are vulnerable. Schedule a 30 minute Consultation with IconATG today.

Security and Compliance Services

Vulnerability Consultation

Security Compliance Requires Tools

AppScan from IBM provides a regression suite to test the latest known vulnerabilities that are commonly used by hackers to take over public facing web applications and corrupt data. Since these same web applications must also meet compliance requirements including PCI Standards, GLBA, HIPAA, and FISMA, AppScan also provides the powerful capabilities needed to meet these requirements.

As a VAP and SVI Certified IBM Partner, IconATG has extensive experience supporting full lifecycle process and its automation through the Rational Tools Suite including the latest tool, AppScan. Although AppScan provides tremendous benefit on its own, its greatest value comes when integrated into the larger SDLC, and IBM looks to its process improvement partners, like IconATG, to provide the larger context to make the took successful.