Who are Visibly?
Visibly is a UK-based software company that helps businesses efficiently manage their teams, suppliers and site safety all in one simple, digital platform.
This proven platform provides a centralised way to track certifications, training and equipment compliance, particularly where operational safety and verified accreditations are essential. Industry sectors include construction, manufacturing and healthcare.
“We’re building a compliance platform for the physical world,” explains Renato Cason, Head of Engineering at Visibly. “Whether it’s a construction site or a hospital, our tool ensures that both people and machinery meet the necessary safety and regulatory requirements.”
The Background
With the web application nearing maturity and the mobile version still under active development, Visibly sought a reliable and transparent partner to conduct a web and API penetration test. Visibly needed a provider that offered flexibility, responsiveness and an intuitive platform experience.
Visibly worked together with OnSecurity to perform a web application and API penetration test, focusing on identifying potential vulnerabilities in data handling and user authentication.
The engagement was managed entirely through the OnSecurity platform, enabling the team to monitor findings and interact with testers in real time.
“The communication was the best part,” Renato notes. “Instead of long email chains, we could comment directly on findings, ask for clarifications, and request retests in one place.”
Delivering Client Confidence
As Visibly helps customers manage safety and compliance for thousands of frontline workers, conducting regular security assessments provides clients with assurance that their data is handled securely.
Why Visibly Partnered with OnSecurity
Visibly’s clear vision was to avoid cumbersome processes, long delays, and static PDF reports.
OnSecurity impressed the Visibly team with a hands-on, consultative approach from the start, particularly because it enabled a technical security engineer to be included in the scoping process to ensure accuracy and transparency in both costing and testing plans.
Ultimately, the project was straightforward: a more transparent, responsive process, supported by a team that felt engaged from the outset.
The Outcome
Although Visibly did not yet need advanced integrations, they appreciated the ability to manage findings efficiently and export results to their internal task system, Jira.
The outcomes highlighted only seven findings in total, which were manually grouped and consolidated, and everything was resolved quickly and efficiently.
- Early Assurance: By performing a penetration test early in development, Visibly confirmed that its security posture was strong, with no critical vulnerabilities discovered.
- Time and Resources Saved: Real-time findings, clear recommendations and collaboration features helped minimise administrative overhead and developer downtime.
- Future-Ready: The team can easily use the same test specifications for future iterations. Visibly has a repeatable model for ongoing assurance.
- Personalised Experience: Direct communication with dedicated contacts throughout the process ensured a smooth and transparent experience.
- Enhanced Client Confidence: Having third-party verification gives Visibly’s enterprise prospects tangible proof of security maturity, helping accelerate procurement and trust
When asked, “How would you describe your experience in a few words Renato said, “Everything went smoothly from setup to execution and retesting. It was all straightforward, clear and efficient.”
Client Confidence Supported by Evidence
Visibly now has verified evidence of its security position to share with current and future clients, underpinning trust and ultimately accelerating business growth.
Visibly recommend OnSecurity. The platform is user-friendly, the process is efficient, and you get a personal level of care that’s rare in this industry. It lets us focus on building our product, not managing admin.”
