In today's climate it is unthinkable to release a solution before completing a security audit. If your application collects credit card, social security, drivers license numbers, medical, or other sensitive data you may even be subject to merchant agreements and state, federal, or privacy laws requiring data protection.

Data protection involves concepts like encryption, instrumentation, auditing, access control, intrusion detection, vulnerability analysis, defense in depth, password policies, and more. BHW has extensive experience on the Microsoft platform in all these areas and can help build a security plan that meets your needs. We can also perform a comprehensive audit of your existing solution to pinpoint your vulnerabilities and demonstrate how to mitigate them. BHW employs best-of-breed techniques to perform a security audit, from industry proven automated analysis tools to user-directed "deep dive" code-reviews.

BHW has a proven track record of delivering secure eCommerce and sensitive data solutions. Recently we completed a solution for the State of Texas that processes over 300 million dollars in annual transactions for the state while maintaining the highest levels of security and data protection. We have experience building and auditing solutions capable of passing important industry standards like the Payment Card Industry (PCI) audit, the OWASP Top 10 web vulnerability audit, and the CWE/SANS TOP 25 audit.

Can you afford to look the other way on security? Not aware of your weakest link? Let BHW analyze your solution and clearly explain the risks you face and how to mitigate them.