Platform Configuration Review
Test and assess the configurations of key product components such as cloud environment, node infrastructure, and third party SaaS platforms with the goal of identifying dangerous settings, minmizing available attack surface, and ensuring monitoring controls are deployed to detect potential abuse.
1
Kick Off & Technical Interview
Work with your team to define the scope and objectives of the platform configuration review. We will also perform a technical interview to understand your technology stack and expected configurations of the platform.
2
Risk Assessment
For the in scope environments perform a risk assessment and threat model to identify the expected users of the platform, likely threats, expected security controls to minimize risks.
3
Configuration Review
Perform a configuration review of the in scope environments to identify dangerous settings, minimize available attack surface, and identify opportunities to harden the system. Our team's review considers individual configuration checks across access control, resource authorization, security hardening, and abuse monitoring controls for a comprehensive approach to secure the platform.
4
Assess & Report
Assess the risk of any findings identified and develop a comprehensive assessment report. The report includes the methodologies used, thematic weaknesses identified, and technical recommendations for remediations.