Applications enable users to interface and manipulate data in a consistent manner and often have the ability to interface with system functions and critical databases to add or modify data. Attackers can leverage flaws in applications to bypass access controls. Web applications, which are internet-facing, are a particular security concern since they present a global attack vector. This document describes how Tenable customers can leverage Tenable solutions to ensure application security processes are aligned with common industry-standard security practices.