Advisory Technology Client Story

Confirming the Security of Devices Being Sold and Shipped Worldwide

A publicly traded Fortune 50 technology company turned to Security Compass to help ascertain if they were shipping secure computers to customers and enterprises worldwide.
Read our other Technology Client Stories.

Global
Technology, Retail

Practice Areas
  • Application Risk Profiling
  • Desktop Application Security Assessment


Our Client’s Challenge:

  • As a manufacturer of consumer and enterprise computing devices with pre-installed third-party developed applications, these third-party software additions can introduce security risks to the hardware which may negatively affect our Client’s brand and reputation.
  • Our Client needed to take precautions for third-party components in order to reduce the risk of inadvertently shipping devices that contained pre-installed, high-risk vulnerabilities that impact consumers.

Our Approach:

  • Working with our Client to understand the profile of pre-installed, third-party applications, Security Compass assigned a risk profile to each application based on a variety of security criteria that could put our Client’s customers at risk.
  • Based on each application’s risk profile, Security Compass prioritized the applications that would benefit from a deep-dive assessment and focused on critical vulnerabilities for the highest risk applications. We performed a variety of security assessments across 80 applications .

The Result:

  • Security Compass provided assurance to our Client that their consumer and enterprise devices were not being unknowingly shipped with critical vulnerabilities from third-parties that could negatively affect their brand and reputation.
  • Vulnerabilities and risks were communicated to the Client’s third-party vendors to assist with remediation of the install packages for future device builds. Security Compass was able to inform our Client of the security risks, allowing them to make an informed, security focused decision, on whether to pre-install the third-party software in their future device builds.
As a result of assigning risk profiles to all third-party applications and performing deep-dive security assessments on the highest risk applications, Security Compass provided assurance to our Client that their devices were not being unknowingly shipped with critical vulnerabilities from third-parties that could negatively affect their brand and reputation.

Back to Client Stories

Contact Us

Our Advisory services team has 14 years of experience focused on Application Security. We take a flexible approach to your strategic security problems.

Whether you are a global enterprise looking for advice on security strategy and governance, a major financial seeking support on regulatory compliance and penetration testing activities, or a startup looking for high quality assessments to give customers assurance for your business, we're here for you.

Our credentialed professionals are experts in how to break applications and fix code, who take pride in helping you succeed in your Secure SDLC and Secure DevOps programs. Contact us today to learn how we can help solve your organization’s application security challenges.

 
Mostly
Some of
 
(Choose One)
(All that apply)
Web Search
Online Ad
White Paper
Analyst Report
Trade Show
Worked With Us Elsewhere
Referral
Other