LiquidPlanner was looking for a modern way to get effective and actionable assessments of security.
Dedicated to helping high-performing teams reach even higher, LiquidPlanner delivers predictive project management for the modern business. LiquidPlanner is expected to maintain a high level of security as a SaaS B2B business that holds onto a lot of sensitive project data for customers. That’s where Cobalt’s Pentest as a Service platform offered the right solution for modern and effective security.
As a company that’s modern business-centric, LiquidPlanner needed a modern security solution. Getting cost-effective, periodic vulnerability assessments and penetration tests was key to increasing their application security level and displaying a commitment to customers.
That's when the company was introduced to Cobalt and decided to explore Cobalt's Pentest as a Service platform. LiquidPlanner got 2 web application pentests a year with Cobalt, each one including 2 weeks of assessment, penetration testing, and analysis from 1 CISSP certified lead pentester supported by 2 technically skilled pentesters/domain experts.
Quality Security Testing
Some traditional providers may have been able to produce a report in the past, but they often lacked quality in the actual security testing.
Basic Vulnerability Scans
LiquidPlanner was looking for an alternative to basic vulnerability scanners and overpriced consultancies.
Increase Application Security
LiquidPlanner wanted to increase its application security level and display its security posture to customers.
“We work with Cobalt because we wanted to show our customers that application security is a key priority for us.”
BRETT BENDER, VP OF ENGINEERING AT LIQUIDPLANNER
Modern Security Testing
LiquidPlanner found a modern security testing-as-a- service to deliver periodic pentests and track individual findings with Cobalt.
With the bi-annual summary report, LiquidPlanner could easily communicate security posture to both existing and new customers.
With Cobalt, LiquidPlanner had its first pentests up and running in no time using a defined scope and specific application logic.
From the moment the pentest kicked off, the team at LiquidPlanner could follow the progress being made and communicate directly with the pentesters end to end. LiquidPlanner had previously performed a one-off vulnerability assessment with a consultancy, but they were looking for a modern security solution with periodic pentests. These pentests included consistent communication and access to lead pentesters, a detailed summary of vulnerability findings, coverage of OWASP top 10 + application logic, and more.