The CSS performed an analysis of the security of the corporate network and Dixy applications
| Customers: Dixy Contractors: Ural Center for Safety Systems (UCSS) Product: IT and Security External Audit Projects (PCI DSS and ISMS)Project date: 2024/04 - 2024/10
|
2024: Corporate Network and Application Security Analysis
The Center cyber security CSSB performed an analysis of the security of the corporate network and applications, and also conducted an audit of the maturity level of the development processes of the secure ON company. " Dixy The UTSB announced this on November 28, 2024.
With the growing number of cyber threats, regular security analysis of information services is a critical process for companies looking to secure their business and customer data. In order to obtain an objective and independent assessment of the current level of security of the corporate network and applications against attacks by potential attackers, the management of the information security department of the Dixy Group of Companies turned to the USCS specialists.
The team of the UTSB Cybersecurity Center conducted external and internal penetration testing, as well as an analysis of the security of Dixy mobile applications. A detailed report was prepared for each service, as well as recommendations were formed to strengthen and support the further information security strategy.
Another task for the CSS within the framework of the joint project was to assess the current level of maturity of safe software development processes in Dixy IT departments. The USCB Cybersecurity Center has formed a separate Secure development direction (DevSecOps), which integrates security standards into software products at all stages of their development.
 | Secure software development is one of the highest priorities for us. USCS specialists conducted an audit of the current state of DevSecOps processes in our company. A feature of the project was a large number of distributed development teams and provided initial data from our side. CSS experts managed to carry out a full-scale audit, collect and control the completeness of the initial information register and bring the information to a common denominator in the context of each team. We received an objective assessment and competent recommendations to increase the level of maturity of safe software development processes, - said Alexander Tanchuk, head of the Dixy information security department. |  |
| The site content is translated by machine translation software powered by PROMT. The machine-translated articles are not always perfect and may contain errors in vocabulary, syntax or grammar. Read original article If you find inaccuracies or errors in the results of machine translation, please write to editor@tadviser.ru. We will make every effort to correct them as soon as possible. |