Cyber Penetration Testing Services

Description

Scope of Work The selected vendor will be responsible for performing the following scope of work: a. Bi-annual (March & November) testing on the following: i. Website Penetration Testing of 2 Websites: - Conduct a thorough assessment of our website's security vulnerabilities. - Identify and exploit potential weaknesses in web applications. - Evaluate the website's resilience against common attack vectors. - Provide recommendations for remediation based on the findings. ii. External Network Penetration Testing: - Assess the security of our external network infrastructure. - Identify and exploit potential vulnerabilities in network devices. - Evaluate the effectiveness of firewall configurations. - Test for unauthorized access to sensitive data. - Provide recommendations for improving network security. iii. Web Application Services Penetration Testing of 2 Services: - Evaluate the security of web application services used by our organization. - Identify potential security flaws in these services. - Test for data leakage and unauthorized access. - Provide recommendations for enhancing the security of third-party integrations. Scope of Work The selected vendor will be responsible for performing the following scope of work: a. Bi-annual (March & November) testing on the following: i. Website Penetration Testing of 2 Websites: - Conduct a thorough assessment of our website's security vulnerabilities. - Identify and exploit potential weaknesses in web applications. - Evaluate the website's resilience against common attack vectors. - Provide recommendations for remediation based on the findings. ii. External Network Penetration Testing: - Assess the security of our external network infrastructure. - Identify and exploit potential vulnerabilities in network devices. - Evaluate the effectiveness of firewall configurations. - Test for unauthorized access to sensitive data. - Provide recommendations for improving network security. iii. Web Application Services Penetration Testing of 2 Services: - Evaluate the security of web application services used by our organization. - Identify potential security flaws in these services. - Test for data leakage and unauthorized access. - Provide recommendations for enhancing the security of third-party integrations.