Penetration testing for fast-growing SaaS brands
Quality manual penetration testing combined with our proprietary testing stack provides a more comprehensive test. Streamline multiple security projects in one place through Portal, the online reporting dashboard that allows you to manage tests, track SLAs, download reports, and view your security posture over time. Offering baseline penetration testing for one-time proof of your application security or year-round security coverage through Penetration Testing as a Service (PTaaS). PTaaS includes security consulting, unlimited re-testing on new feature updates, unlimited fix verification on patched issues and quarterly deep pentests for the most coverage. All pentesters are full-time employees based in Canada. All pentests can earn a certificate for proof of application security. Specific expertise on SaaS applications for compliance, M&A, and integrating security into DevSecOps processes. Contact us for a quote today!
Recommended Providers
Focus
Portfolio
Willful
Erin Bury from Willful shares how security helped build trust with clients. When looking for a security testing firm, Willful chose Software Secured because they knew they would be kept informed on any gaps, best practices, and areas for improvement in the application, which kept Willful's development team in the loop on their security posture. They loved Software Secured's experience working with both startups and larger companies. See more from Erin's thoughts at the link!
Titus
Software Secured helped the development team at Titus (now acquired by HelpDesk) understand reports and integrate better application security practices.
Reviews
the project
Penetration Test for Fintech Company
"We commend the superior quality of their reports and the easy interaction with their representatives."
the reviewer
the review
The client submitted this review online.
Please describe your company and your position there.
I’m a Sr. Security Analyst at an industry-leading securities brokerage platform enabling boutique investment banks to operate legally and compliantly.
For what projects/services did your company hire Software Secured?
We use Software Secured twice a year for our external penetration tests.
How did you select this vendor and what were the deciding factors?
I have had the opportunity to review their work in a previous position, and their price-to-quality quotient is outstanding.
Describe the project in detail and walk through the stages of the project.
They performed the blackbox and greybox penetration tests in our systems. The first stage was defining the scope and the requirements of the project. Second, they started the assessment—it was on this stage that I really appreciated the clear, unequivocal communication with their representatives. Third, they shared the penetration test report for our analysis, which was entirely valuable. Finally, they retested the findings fixed by our engineering team.
How many resources from the vendor's team worked with you, and what were their positions?
An account manager, a project manager, and the pentest team.
Can you share any outcomes from the project that demonstrate progress or success?
They wrote two excellent penetration test reports, based on the types of penetration test we requested. Each report contained a short introduction, a detailed explanation of the findings, and how to reproduce these. It is important to mention that the findings were organized by severity and risk. Finally, they included a brief appendix explaining all terminology used.
How effective was the workflow between your team and theirs?
The workflow was very smooth, with easy and transparent integration between our teams.
What did you find most impressive or unique about this company?
We commend the superior quality of their reports and the easy interaction with their representatives.
Are there any areas for improvement or something they could have done differently?
Not to my mind, no.
the project
Penetration Testing for Data Analytics Company
"They provided one of the best penetration test reports I had ever seen."
the reviewer
the review
The client submitted this review online.
Please describe your company and your position there.
I'm the Director of Operations at a company that does analytics for some of the largest companies around the world.
For what projects/services did your company hire Software Secured?
We used their services for our annual penetration testing.
How did you select this vendor and what were the deciding factors?
They knew what they were doing, and had good suggestions during our initial review. Their price was one of the better ones that we were quoted.
Describe the project in detail and walk through the stages of the project.
They did a full penetration test for us, getting everything done that we required. External pen tests, endpoint testing, attempting to access things they shouldn't be able to, and finding things we haven't thought of.
How many resources from the vendor's team worked with you, and what were their positions?
We had a lead and at least one security engineer. Our surface area is not large (on purpose) so it didn't require a large team.
Can you share any outcomes from the project that demonstrate progress or success?
They provided one of the best penetration test reports I had ever seen. A detailed report for internal use and resolution, and a summary certification to be stored for evidence and sharing externally.
How effective was the workflow between your team and theirs?
Everything was great!
What did you find most impressive or unique about this company?
They provide the quality of some of the biggest names in security, without the price tag and complications. If you need some things done, have a pretty good idea of what needs to get done, and don't want to be sold a bunch of extras that aren't required for the project, this is who you go with.
Are there any areas for improvement or something they could have done differently?
Not for that project.
Software Secured wrote two excellent penetration test reports. They had a smooth, easy, and transparent workflow that resulted in a detailed explanation of their findings. Notably, the team also provided an appendix that explained the terminologies they used.