ECINS March
2012 – to April 2012 Not-for-Profit Social Enterprise CLAS Consultancy
E3 - Vulnerability Assessment CCP Certified Skill
Advice given to Empowering Communities regarding the need for vulnerability testing
Result : The testing results were
prioritised in accordance with https://cve.mitre.org/ identified
vulnerabilities as well as other vulnerabilities which the business were made
aware of by the CHECK team. Retesting took place until all risks were mitigated
to a level of Low which was identified and the appropriate risk tolerance. This
is in accordance with Art. 25 GDPR”Data protection by design and by default” (
Recital 78 “Appropriate Technical and Organisational Measures”
Borders July
2015 to April 2016 Home Office UK Borders
Application Development Information Security
E3 - Vulnerability
Assessment CCP Certified Skill
Identification of vulnerabilities in code development in sprint and before deployment
Result : If remediation was required the implementation of the module was inserted into a sprint backlog and deployed after retesting. This is in accordance with Art. 25 GDPR”Data protection by design and by default” ( Recital 78 “Appropriate Technical and Organisational Measures”