A client in the financial services industry was interested in testing the security of their web-facing application to identify weaknesses or misconfigurations that could allow unauthorized access to internal systems or sensitive data.
Baker Tilly's approach to web application security testing is based on the OWASP Top 10 web application vulnerabilities. Utilizing this framework, Baker Tilly was able to confirm the security of the company's web application against the most common web application attacks. The only finding was a low-risk item related to the web application allowing lower-level network security protocols for communication.
Baker Tilly's web application security testing was able to confirm the security of the company's web application and make a configuration enhancement recommendation to minimize risk related to deprecated network protocols.