HMS IT has published Web Application Security Guidelines that apply to all HMS websites and web applications.
If you develop or manage a web application at HMS, we recommend the following:
- Review the Web Application Security Guidelines.
- Assess your current applications against the baseline controls defined in the guidelines, including controls aligned with the HMS Vulnerability Management Policy.
- Address any identified gaps by adopting the suggested controls for your applications. To schedule a security review of your web application, contact carlos_neto@hms.harvard.edu
HMS IT is ready to help.