Thu, Oct 15, 2015
After the recent influx of large-scale data breaches, application security has quickly made its way to the forefront of IT security topics, and a web application risk assessment is used to determine what types of controls are required to protect an application from threats – allowing credit unions to reduce exposure and maintain an acceptable risk tolerance.
TraceSecurity’s self-service risk assessment guides users through three easy steps to attest to controls already in place, discover any present threats due to unimplemented controls and to view and download a full Web Application Risk Assessment Report of the findings.
Since 2003, OWASP has published a list of the ten most critical web application security risks with an objective to raise awareness and educate business managers and technical personnel on how to assess and protect against a wide range of application vulnerabilities. The TraceSecurity self-service risk assessment allows credit unions to quickly see if their application is vulnerable to these ten most critical web application security risks. The security risks identified by OWASP represent a consensus among many of the world’s leading information security experts about the greatest risks, based on both the frequency of attacks and the magnitude of their impact on business.
The risk assessment process evaluates the likelihood and potential damage of identified threats, measures the individual risk level of each asset as they relate to Confidentiality, Integrity and Availability (CIA), and then gauges the effectiveness of existing controls to limit the credit union’s exposure to such risk. Results help credit unions to identify which assets are most critical, provide a basis for prioritization, and recommend a course for remediation.