Procinct Security Services
Network Vulnerability Testing
Penetration Testing
Independent Verification & Validation
eCommerce Security Audit
System Hardening
Policies & Procedures Development
Incident Response
Risk Assessment
Web Application Security Review
Custom Security Solutions

eCommerce Security Audit

 Downloadable Customer Datasheet

Procinct Security's exclusive eCommerce Security Audit incorporates the four most important security evaluations in a single audit: Risk Assessment, Network Vulnerability Testing, eCommerce Application Security Review, and Automated Monitoring. When combined together, these security techniques enable us to perform a comprehensive examination of a company's network infrastructure to determine the strengths and weaknesses of its security posture. Procinct Security identifies vulnerabilities in your company's network and system configuration and provides you with prioritized recommendations for mitigating vulnerabilities.

Our eCommerce Security Audit starts with a high-level Risk Assessment. This includes identifying and assessing the risks and threats associated with your company's business, IT and security infrastructure. Then we review your existing policies and procedures. Next, we perform Network Vulnerability Testing (NVT) using state-of-the-art tools against your systems to help identify any security weaknesses. After NVT, we conduct a thorough security code review of your entire eCommerce application looking for common security vulnerabilities such as buffer overflows. This review also includes testing the application functionality against requirements and specifications. Using all of the information gathered from our research and tests, we interpret the results and make recommendations on how to protect against these vulnerabilities. Finally, for a short period following the audit, we perform automated monitoring at regular intervals against your Internet infrastructure to ensure the security vulnerabilities have been fixed and to detect and report any changes from our network tests. Our exclusive automated monitoring ensures that our vulnerability tests are not just a snapshot in time, but can provide a periodic assessment of your Internet security posture.

Our comprehensive eCommerce Security Audit helps your company accomplish the following:

  • Identify and assess potential security weaknesses associated with your company's business processes, IT and security infrastructure, and security policies and procedures.
  • Ensure that existing security measures are effectively implemented to mitigate the possibility of denial-of-service attacks, and to reduce site outages and performance problems.
  • Help protect your company's revenue stream and create a secure environment for information access.
  • Assess active defense systems such as a company's intrusion detection system (IDS) and computer incident response team (CIRT).
  • Provide detailed information that can be used to qualify for information protection insurance, meet customer contractual obligations, and meet your customers' service level expectations.
  • Ensure that the underlying code of your company's eCommerce application meets its functional requirements and specifications, and does not contain common security vulnerabilities.
  • Ensure changes to your company's Internet infrastructure are detected and reported for a short time frame following the audit.