NEW FEATURE
Cobalt PtaaS + DAST combines manual pentests and automated scanning for comprehensive applications security.
NEW FEATURE
Cobalt PtaaS + DAST combines manual pentests and automated scanning for comprehensive applications security.

Flux meets customers’ security needs with Cobalt’s speedy pentests and customizable reports

Flux brings in new customers and gains security insight for development with Cobalt. 

Flux is a fast-growing internal mobility platform that needed a pentesting partner to start right away. When Flux signs new customers, they often have security and pentesting requirements that demand clear, detailed reporting. Cobalt's expert pentesters started pentesting quickly - within two days - offering a complete scope of testing across standard processes, critical web application security risks, and testing in isolation.

With retesting automatically included as part of Cobalt’s services, and remediation reflected in the final report, Flux was able to sign new customers and confidently meet their stringent security requirements.

Challenges

Needed to Pentest Immediately

Speed is key for Flux—prospective customers often require pentesting reports before signing on.

Scoping Requirements

Flux needed detailed testing for web application security.

Flexible Reporting

Flux needed a partner that could produce customized reporting for their different stakeholders.

Results

Quick Turnaround Time

Cobalt completed the test, produced a report and completed retests within two weeks

Testing Exceeded Expectations

Cobalt tested more than expected and provided a thorough analysis.

General Improvement to Security

Cobalt helped Flux improve input validation, code development and logic.

Flux offers an internal mobility platform that helps companies develop, engage and retain their workforce. Flux connects employees with roles and projects within their company to gain new skills, explore new roles or take the next step in their careers. As a result, retention improves and hiring managers can fill roles with greater efficiency.

As a multi-tenant system, Flux needed pentesting to help prevent client data leaks. Cobalt delivered thorough, professional testing of the Flux application, website, logic and workflow. Cobalt also tested tenant isolation, which is important to Flux and its customers.

Cobalt tests from a real attacker's perspective, which helped Flux improve validation and development. With customer data in its application, pentesting and security checks are vital to client engagements.

Cobalt’s PtaaS platform provides real time visibility and gave Flux the opportunity to remediate right away before a final report was delivered. Cobalt’s customizable reporting offered Flux’s internal employees a complete level of detail, including discussions with the pentester about specific findings. Flux customers were able to see reports of how many issues there are, a brief summary of each and an explanation of the resolution.

With retesting and remediation reflected in the final Cobalt report, Flux was able to sign new customers and confidently meet their stringent security requirements.

“Our Cobalt pentesters were a great resource, reporting issues in a clear, professional manner and was responsive to our questions. Overall, we were pleased with their discoveries and responsiveness, which we ultimately used to improve our application code.”

WEI WEI,

CHIEF TECHNOLOGY OFFICER