Laserfiche WebLink
CompuNet Inc <br /> • city of Everett <br /> Application Security Assessment <br /> ENGAGEMENT SUMMARY <br /> This Statement of Work ("SOW") is made as of 05/27/2021 (the "Effective Date") by and between City of <br /> Everett ("Customer") and CompuNet, Inc. This SOW is made a part of and is subject to the Terms and <br /> Conditions (Appendix A). Collectively, this SOW, and Appendix A are referred to as the "Agreement." <br /> CompuNet, Inc. will provide services to Customer under this Agreement as further described below. <br /> Overview Of Services <br /> Executive Summary <br /> Applications are at the heart of today's increase in security breaches, and bad actors don't discriminate <br /> and are consistently targeting all industries and verticals. Applications are the foundation of how we live, <br /> work, and interact with our co-workers, employees, and customers. Although companies are placing a <br /> tremendous focus on application security, severe gaps still exist in visibility, understanding, <br /> organization, and knowledge of where and what to apply attention and resources. The first step in <br /> approaching Application Security is to gain a detailed account of the application landscape and its <br /> vulnerabilities and potential attack surface. By understanding this, you can begin mitigation strategies <br /> and prioritizing remediation efforts. <br /> CompuNet has recognized the shared challenge that our customers are unsure where to start with <br /> Application Security. CompuNet has developed a high-impact, consultative engagement providing our <br /> customers with an Application Security Assessment to address this overwhelming need. Our Application <br /> Security experts will engage in an assessment that involves workshop interviews, scoping then <br /> performing application discovery and vulnerability scanning. Following the discovery and scanning, our <br /> engineers will analyze the scan, summarize and document the resulting information into a detailed <br /> assessment that provides a consolidated understanding of the Application Security landscape, <br /> actionable recommendations, along with a prioritized list of Low, Medium, and High liability <br /> vulnerabilities. <br /> There is a challenge of offering services to customers while also maintaining a secure web application. <br /> Customers understand the importance of reducing their attack surface area but often lack a <br /> direction. The web application security scanner crawls the running web applications to create a site map <br /> with all of the pages, links, and forms for testing. With the map completed, it interrogates the site to <br /> identify any application vulnerabilities and produces a detailed report. CompuNet prepares an <br /> Application Security Assessment that includes remediation and recommendations for the vulnerabilities <br /> found in the scan. <br /> Project Overview <br /> CompuNet's Web Application Assessment engagements begin with our Discovery Workshop, where we'll <br /> SOW* 102295 - Revision #1 <br /> Seattle, WA I (206) 456-9133 <br /> www.compunet.biz <br /> TI7 s r%ocument is PROPRIETARY and SENSITIVE and may not be duplicated redistributed or displayed to any other party without the <br /> expressed written permission of CornpuNet,Inc.An automatic exception is granted to public entities. <br />