Advisory Technology Client Story

Conducted Suite of Security Assessments for a SaaS Client

A software analytics SaaS company commissioned Security Compass to help conduct security assessments of their mobile applications, various application program interfaces (APIs), and a software development kit (SDK) used to develop mobile applications within the organization.
Read our other Technology Client Stories.

Global
Technology

Practice Areas
  • Mobile Application Security Assessment
  • Source Code Review


Our Client’s Challenge:

  • A Client sought Security Compass’s assistance to perform security assessments of their mobile applications, various application program interfaces (APIs), and a software development kit (SDK), as part of an ongoing security program.
  • They had a requirement to confirm that their mobile applications, APIs, and the SDK did not collect, store, or disclose any sensitive information that may impact their customers or the organization. They also sought assurance that the SDK and APIs did not introduce new security vulnerabilities into developed mobile applications.

Our Approach:

  • Working with our Client to understand specific security concerns around each component, Security Compass performed independent assessments of our Client’s mobile applications, APIs, and the SDK to evaluate the risk and potential vulnerabilities in each solution.

The Result:

  • Although no major findings were identified through our testing, strategic recommendations were provided to help our Client improve their security posture further.
  • Security Compass was able to outline a detailed review of testing methodology, providing our Client assurance that their internal security program was effective and that coverage of each component’s potential threats had been reviewed by an external independent party.
  • We provided our Client with the added assurance that there was no mishandling of sensitive information and that the SDK and APIs were not introducing vulnerabilities into developed applications.
Security Compass provided our Client with assurance that their internal security program was effective and that coverage of each component’s potential threats had been reviewed by an external independent party.

Back to Client Stories

Contact Us

Our Advisory services team has 14 years of experience focused on Application Security. We take a flexible approach to your strategic security problems.

Whether you are a global enterprise looking for advice on security strategy and governance, a major financial seeking support on regulatory compliance and penetration testing activities, or a startup looking for high quality assessments to give customers assurance for your business, we're here for you.

Our credentialed professionals are experts in how to break applications and fix code, who take pride in helping you succeed in your Secure SDLC and Secure DevOps programs. Contact us today to learn how we can help solve your organization’s application security challenges.

 
Mostly
Some of
 
(Choose One)
(All that apply)
Web Search
Online Ad
White Paper
Analyst Report
Trade Show
Worked With Us Elsewhere
Referral
Other