Common use of Detailed Scope of Work Clause in Contracts

Detailed Scope of Work. The selected IT Security Audit Agency(ies) shall be responsible for the assessment of the vulnerabilities, threats and risks that exist in website through Internet Vulnerability Assessment, Penetration Testing and Industry standard methodologies. This will include identifying remedial solutions and recommendations for implementation of the same to mitigate all identified risks, with the objective of enhancing the security of the website. The bidder will also be expected to propose a risk mitigation strategy as well as give specific recommendations to tackle the residual risks emerging out of identified vulnerabilities assessment. For each security audit, the internet link and credentials for staging environment of the web site/portal/application, accessible only to the security audit agency, shall be shared. Each instance of security audit of a web portal/application shall have the following four primary steps: RISL Rate Contract for Security Audit of Website(s)/Web Application(s)/portal(s)/Mobile App(s)

Detailed Scope of Work. The selected IT Security Audit Agency(ies) shall be responsible for the assessment of the vulnerabilities, threats and risks that exist in website through Internet Vulnerability Assessment, Penetration Testing and Industry standard methodologies. This will include identifying remedial solutions and recommendations for implementation of the same to mitigate all identified risks, with the objective of enhancing the security of the website. The bidder will also be expected to propose a risk mitigation strategy as well as give specific recommendations to tackle the residual risks emerging out of identified vulnerabilities assessment. For each security audit, the internet link and credentials for staging environment of the web site/portal/application, accessible only to the security audit agency, shall be shared. Each instance of security audit of a web portal/application shall have the following four primary steps: RISL Rate Contract for Security Audit of Website(s)/Web Application(s)/portal(s)/Mobile App(s):