Website security and web application security check lists

methodology

Use the following check lists for your web application security (webappsec) projects.

I have reviewed and admire the content in your [Watson Hall] Information Security Diligence List and use portions of its content internally to assist work with our mergers and acquisitions team      

Attorney, multinational Fortune 100 retailer

Web application security due diligence information

Identifying information security risk for web applications requires a comprehensive and thorough analysis. This checklist includes information and documents which would typically form a request at the start of a due diligence investigation.
321 kB PDF, 8 pages A4
/resources/downloads/checklist-due-diligence.pdf

Website and web application legislation

The use of web applications can lead businesses into areas or effects of legislation where their conventional non-internet commerce might not have been relevant. This check list identifies some of the common legislation which organisations may need to consider.
309 kB PDF, 4 pages A4
/resources/downloads/checklist-legislation.pdf

Security testing authorisation

It is important that organisations provide proper authority to people undertaking any form of website or web application security testing. This check list provides a guide to some items which should be considered and specified.
303 kB PDF, 3 pages A4
/resources/downloads/checklist-security-testing-authorisation.pdf

For a full listing of site content, see the website map

Contact Watson Hall

Watson Hall works with your business and information systems staff, partners and suppliers, including professional advisors such as accountants, auditors, insurers and solicitors. We guide, assist and build security and skills in organisations to reduce security and compliance risk.

Security is always going to be a cat and mouse game because there'll be people out there that are hunting for the zero day award, you have people that don't have configuration management, don't have vulnerability management, don't have patch management.
(Kevin Mitnick)

Act now

Watson Hall works with your business and information systems staff, partners and suppliers, including professional advisors such as accountants, auditors, insurers and solicitors. We guide, assist and build security and skills in organisations to reduce security and compliance risk.

To discuss security matters in confidence and without obligation, telephone us on 020 7183 3710 or complete the enquiry form

© 2007-2015 Watson Hall Ltd, last reviewed 3 March 2015

These pages contain general information only. Nothing in these pages constitutes professional advice. Please read the website's terms of use, and consult a suitably qualified professional on any specific problem or matter.

© 2007-2015 Watson Hall Ltd, last reviewed 3 March 2015

Watson Hall Ltd is a company registered in England no 6004969 at North Bastle, Gatehouse, NE48 1NG, United Kingdom.

https://www.watsonhall.uk/methodology/checklists.pl
Watson Hall Ltd - Check lists
Requested by: 54.81.33.114 on Sunday, 5 July 2015 at 22:01 hrs