Having expertise in the review and maintenance of legacy software and of creating software used for running sensitive parts of businesses we can provide the following services.

• Review of software against OWASP (Open Web Application Security Project) guidelines - including creating checksheets for your own developers to use in the future.
• Modification or assistance with modification of software to meet OWASP (or other) guidlines.
• Advice and assistance with creating development processes that allow you to comply with standards such as PCI DSS (Payment Card Data Security Standard) or IEC 61508.
• Writing software that allows you to work within your regulatory framework.

We also understand the importance of correctly balancing the investement in secure and reliable coding with the impact of the risks and can provide guidance in this area.