Assessing Vendor Application Security A Practical Way to Begin

by Barton Hubbs
Sept. 1, 2017 0 comments SANS Institute Pen Testing & Audits application and database security

Many companies are adopting a preference toward buying vendor software versus building software in-house to meet business needs. Some of the drivers for this preference are integration, scalability, outsourcing, support, speed-tomarket, process savings, and reducing the cost of information technology (IT). In adopting a preference for purchased software, it becomes critical that companies have an assessment methodology for determining how well each proposed vendor package will meet established business and technical requirements.