When moving to the cloud, your risk assessments need to be driven by some of the following considerations:

End To End Functional Validation: That your users are able to use your applications without facing functional challenges. That the promises you make your customers, are being met through both functional validation, and data validation having been carried out to ensure this experience

Integration Testing with 3rd party systems: That your applications integrate with other 3rd party or internal applications seamlessly. API validation and functional validation of the end to end user journeys, at each of the customer touch points have been carried out to ensure this.

Security Testing: That your application provides a secure experience to the users. That security validation (against OWASP top 10 guidelines, at least), authentication & authorization, protection against DDoS attacks, access controls to sensitive content & data amongst others is validated.

Compliance Testing: That your application complies to various regulatory requirements that encompass the industry that you operate in (e.g. HIPAA or PCI DSS), usability (e.g. WCAG guidelines for accessibility) or even data protection (e.g. GDPR or CCPA)

Compatibility Testing: That your applications are compatible with all the operating systems, browsers and devices that your wider audience would now use. Compatibility testing, multi-browser testing, multi-device testing has been carried out

Performance Testing: That your application performs with the rated response time, and is able to sustain a large number of users, over a sustained period of time. Performance considerations have been validated through very specific load, volume & endurance tests

Operational Readiness Testing: That your recovery time objective (RTO) - the amount of time that it takes your business to recover from failure with acceptable losses - has been assessed. That you have conducted operational readiness tests, that validate your high-availability, disaster recovery, and business continuity plans

Deployment Testing: That your application deployment mechanisms that enables the provisioning of public cloud environments through templates/configuration files have been validated. Infrastructure As Code testing has two aspects - static code analysis/ source control to check syntax and rule compliances and also whether the defined environments were provisioned.

Deliverables

Trigent will provide separate reports for each of the tests we conduct for your cloud deployments. The reports will provide details of all the identified risks, and their severity. The report includes, key risk areas, key observations and severity of each of them, details of how to reproduce them & audit logs.

Customer Testimonial

"Trigent Software delivers everything that’s asked of them each sprint. The team is excellent at getting up to speed with new technologies. They’re an organized team that gets the job done." - VP of Engineering, Insurance Software Company.

Read customer review