Helping You Discover Your Unknown Threats
Penetration Testing and Code Reviews
Our Targeted Framework Assessment strategy uses ethical attack methodologies for web application and infrastructure penetration testing. We employ Crest certified security professionals with front line defense experience in media & entertainment, military and banking.
Our penetration testers are very familiar with the TPN security assessment program for the M&E sector. Our team is able to take your business safely through real-world attack scenarios, allowing you to find and fix vulnerabilities before attackers can exploit them. All of our penetration testing is performed using an established, standard methodology allowing our clients to demonstrate controlled improvement between test cycles. We analyze the data to determine if your system is vulnerable to internal or external attack.
The MPA/TPN Best Practice guidelines advise external infrastructure and web application pen testing by a third party annually and also monthly vulnerability scanning. As we conduct an initial vulnerability scan as part of penetration testing, the option is to have 11 subsequent monthly scans from the second month until the end of the 12-month period.
Code Reviews – We provide code review services to assess the source code of web applications as part of an overall security assessment. Our code professionals will assess the quality of the source code to identify vulnerabilities in libraries that may exist, especially weaknesses in the integration between the code base and libraries and this is supported by a detailed report showing the findings with guidance on remediation.
“Convergent was very understanding of the difficulties posed by the COVID-19 related business shutdowns. We were able to figure out with them a convenient and practical approach for testing while not compromising on any bit of the effectiveness of the pen test. It was particularly remarkable that Convergent was not putting up a security theatre, instead they were placing their emphasis on real security issues. It was a pleasure to work with them and we look forward to engaging with them again on our security compliance journeys.”
“The test was practically unnoticeable, but its results were delivered in a timely, accessible and helpful way. Very happy with how smooth the process was.”
“The process was easy and actually the Convergent team were more than responsive and they walked us through the process, and we have no issues during the Pen test!! I would really recommend them!!”
“We are very pleased with the service provided by Convergent Risks, who have been professional, flexible and helpful, every step of the way. The penetration test report was clear and concise, and we’ve partnered with them for ongoing monthly security reviews. Would highly recommend!”
“The pen test is very useful, especially if you are unsure of which areas of your IT system needs amendments, or help. Also helpful in case you are getting ready for your assessment. It helps you to make sure you are aware of the problems, if any, or helps you to reconfirm that everything is fine in your system. It also gives you the opportunity to correct any outstanding issues by the time you are facing your assessment.”