Organization Size: 300+ Users, +$700M in Assets
Conversation Driver: Compliance
Core Security Services: Penetration Testing
Security Maturity Level: Medium
Engagement Summary: The client, a community bank in Northern Virginia was required by regulators to conduct annual Penetration Testing. Core conducted a Penetration Test for the client and Core’s testing validated the IT Manager’s concerns – it was all too easy for an attacker to gain access from the outside. With internal access, Core discovered weak access controls that allowed the testing team to elevate privileges, ultimately capturing sensitive customer information. Core partnered with our clients Information Technology Management Team to present to Senior Leadership and their Board, which resulted in an increased Information Security budget for the following fiscal year.