What Is It?
A security attestation is a mechanism for confirming the security state of what has been assessed, be it a web service, compiled application, underlying infrastructure or cloud service for example. It is typically offered to buyers of the service or product to independently provide confidence around the service or product from a security standpoint. Security attestations can also be used inside project management to indicate an organisations readiness to formally accept the projects deliverable and deploy it into a live environment.
Why Assess It?
There are many reasons to conduct a security attestation, five of which are below.
The Agility Cyber Approach
Like all our engagements, we want you to get the most out of your security attestation and we do this by: