Remediation Verification.
Targeted retest against a remediated finding set, with a retest letter suitable for marketplace and reviewer submission.
What it covers.
- Item 01
Re-execution of the original reproduction steps for each remediated finding.
- Item 02
Confirmation that the remediation closes the finding without introducing a regression.
- Item 03
Updated severity disposition for findings that are partially remediated or accepted.
What we need from you.
- Item 01
The original finding set under retest and the team's remediation notes.
- Item 02
Same access tier as the original engagement, refreshed if credentials rotated.
- Item 03
Authorization to retest if the original Authorization to Test does not cover this window.
How it runs.
- Item 01
A retest scope memo confirms which findings are in and out.
- Item 02
Each finding is reproduced or shown to be closed.
- Item 03
Retest letter is drafted, reviewed against a defensibility checklist, and delivered.
What the deliverable is.
- Item 01
Retest letter listing each finding's status: closed, remediated, partially remediated, accepted, or unable-to-verify.
- Item 02
Updated evidence for any finding whose status changed.
What Veyra will not claim.
- Item 01
We will not mark a finding closed without reproduction.
- Item 02
We will not extrapolate from a closed finding to broader claims about the system.
Read a redacted sample report, or describe the system you want assessed.
Engagement requests receive a reply from a named assessor within one business day.