Penetration Testing

Thematic completes third-party external penetration tests to independently assess the security, vulnerability, and intrusion testing of the Thematic web application, annually.

The testing follows a consistent and structured approach and represents a point in time assessment of the nature and extent of potential or existing exposures that may lead to a compromise of the environment. Testing is based on best practice methodologies, such as the Open Web Application Security Project (OWASP) guides, which goes beyond the OWASP Top 10 and CWE/SANS Top 25 Most Dangerous Software Errors, in combination with other in-house developed processes and methodologies.

Thematic engages consultants to perform web application penetration testing on an ongoing basis.