Contact Us
Contact Us

CASE STUDY

Application Pen Testing with Improvement Service

Government Relations Services

Improvement Service

pen in hand green keyline

Overview

The Improvement Service supports Scottish local authorities through a mix of research and consultancy services. Within the organisation, the Digital Public Services team is dedicated to delivering web services that serve both councils and citizens across Scotland. Given the nature of these digital services, meeting stringent security requirements is essential – not only to protect user data, but also to uphold public trust in government digital infrastructure and meet compliance standards.

The Challenge

The Improvement Service team was using terminal-based vulnerability assessment tools, but they needed a more intuitive, user-friendly solution that could provide clear visualisation of security data while meeting the stringent security requirements of public service applications. They were looking for a tool that would streamline their vulnerability management process without sacrificing robust security analysis capabilities.

The Improvement Service team had been using terminal-based vulnerability assessment tools primarily for running application penetration testing. Ultimately, the team needed a more intuitive, user-friendly solution that combined robust pen testing capabilities with accessible data visualisation. They were seeking a platform that could both streamline their vulnerability management process and strengthen their cyber defences against evolving threats.

“Since adopting FullProxy’s vulnerability assessment tool in January 2025, we’ve seen clear improvements over our previous systems. The web-based interface is straightforward to use, with data visualisation features that make security information easy to access and apply.

What we appreciate most is the platform’s simplicity. It required minimal configuration, and our team was able to use it effectively straight away. For our Digital Public Services team, responsible for web services used by both councils and citizens across Scotland, FullProxy delivered the capabilities we needed without adding unnecessary complexity.”

Daniel Glennie, Security Manager
Improvement Service

FullProxy's Solution

In January 2025, the Improvement Service team implemented FullProxy’s web application-based pen testing tool. This solution offered a significant upgrade from their previous terminal-based tools, providing a web interface with intuitive data visualisation features. The platform was designed with ease of use in mind, allowing the team to quickly adopt the new system without extensive training or complex configuration requirements.

Results and Benefits

Since implementing FullProxy’s pen testing solution, the Improvement Service team has experienced several key benefits:

  • Enhanced Cybersecurity Posture: Regular application pen testing ensures vulnerabilities are identified and remediated before they can be exploited, helping the organisation safeguard sensitive citizen data and maintain compliance.
  • Intuitive User Interface: The team that works hands-on with the application, highlighted that the platform is smooth in terms of usability, and with data that is laid out clearly.
  • Straightforward Implementation: The team found the solution to be a straightforward and stress-free experience that didn’t require extensive configuration or a steep learning curve.
  • Effective Data Visualisation: The data visualisations were intuitive and easy to use, making it easier for the team to understand and act on security findings.
  • Reliable Performance: During extensive use, the team reported zero issues with application failures or performance problems.
  • Reduced Complexity: Compared to other application pen testing tools, FullProxy’s solution is streamlined, making it accessible for users of varying technical expertise.

Why FullProxy?

FullProxy offers a vulnerability management, application pen testing solution that balances powerful security features with exceptional ease of use. For teams like Improvement Service that need to protect sensitive public sector applications, FullProxy provides a reliable, intuitive platform that simplifies the security management process. The web-based interface and clearly displayed data allow teams to quickly identify and address vulnerabilities without the complexity often associated with security tools. FullProxy’s solution is designed for quick implementation and minimal learning curve, enabling security teams to focus on protecting their systems rather than navigating complicated interfaces.

Interested in learning more about pen testing? Take a look at our services and get in touch!

More Case Studies

Ambulance speeding on blue lights
  • Emergency Services

Automating Certificate Management for South East Coast Ambulance Service

By partnering with FullProxy and implementing AppViewX, SECAmb successfully automated their certificate management, reducing workload, improving efficiency, lessening the risk of private patient data being exposed as it is transferred between departments.
Read more
  • Energy

F5 Hardware Refresh, Software Upgrade and Configuration Migration with C&C Group

C&C Group is a leading software manufacturer specialising in designing, developing, delivering, and hosting cloud-based software solutions. Their solutions are primarily used by UK critical infrastructure companies operating in the electricity, water, gas, and healthcare sectors. As a long-standing customer of FullProxy, C&C Group needed to carry out a vital F5 hardware refresh and Bourne series to rSeries migration in order to modernise their network infrastructure and ensure compliance within a regulatory framework. 
Read more
  • Healthcare

F5 optimisation consultancy for Scottish Healthcare Trust

NHS Lothian had discovered their F5 appliances were sailing with improper configurations, leaving their network vulnerable to malicious intruders. With the spectre of cyber threats looming large, including the ominous prospect of patient data breaches, the need for swift and decisive action was paramount.
Read more
Lecturer teaching a university class
  • Higher Education

Secure Remote access for Top 20 university using F5 solutions

In today's cyber security landscape, universities face the dilemma of providing seamless yet secure remote access to their staff and students, irrespective of their geographical locations. For a prestigious UK top 20 university with a sprawling network encompassing thousands of individuals dispersed across the UK and beyond, this challenge was particularly daunting.
Read more
Talk to an expert