Minimizing the time required to correctly address high risk application security vulnerabilities is the goal of the GDS Vulnerability Remediation service line. GDS works directly with company management and development teams to provide a prioritized and detailed game plan for addressing identified security flaws in the context of the client's application environment.
GDS will construct the required detailed remediation plan(s), aid in execution, and then track item and overall project status. Depending on the availability and skillset of your development team we can provide fix and implementation guidance, or provide you with the secure development staff resource to fix the code directly. The end goal is to provide the tools and knowledge to prevent development teams from making the same mistake twice. GDS clients recognize the true value of this approach when evaluating the allocation of resources to remediate identified application security exposures. The reduction of developer confusion, issue misinterpretation, and erroneous or incomplete fix implementation allow corrections to reach production environments faster.
The GDS remediation project deliverables typically include the following detailed information:
- Estimated project plan with dates and milestones
- Exact instances of identified vulnerable code
- Recommended or actual code fixes to remediate issues
- Architecture considerations
- A remediation test plan
- Task status indicators