AI Insights

Godel Delivers In-Depth Penetration Testing to Safeguard Critical Oil & Gas Operations

EOX Europe is the technology company that supports Oil Brokerage, which is the largest commodity broker in the oil and gas sector.  They have a 30-year track record of providing a high-quality, trusted broking service to the commodity and shipping industry. 

Global brokers in the oil and gas sector operate within one of the most highly regulated industries in the world, facing strict compliance requirements. The critical nature of their operations makes them prime targets for cyberattacks, fraud, and other security threats. As a result, maintaining robust security measures is not a luxury but a necessity. 

Given that the OBX product operates in a highly regulated industry, it must be regularly tested to ensure continuation of its existing security controls within the platform. “In order to strengthen our security measures, we need to conduct regular and thorough penetration tests to identify vulnerabilities and the potential impact they could have”, Jamie Shedley, Chief Technology & Security Officer, explains. “Working with Godel as an existing trusted partner, we decided to approach them to conduct the pen. test.” 

Godel performed a Grey-box Web Application Penetration Test within one month, which includes a black-box method in alignment with the latest OWASP standards, as well as PTES and NIST approaches. The scope of testing included Authentication mechanisms, session management, and input validation, as well as the security of APIs and cloud infrastructure in terms of external network security. 

The penetration test included exploration and setup of test infrastructure, testing and exploiting, documentation, and presentation of results. Godel’s security analyst regularly provided feedback on the status of the testing progress and interim findings. The analysis carried out by Godel’s Security Experts showed that the OBX platform’s security protection performed well and helped ensure there were no breaches. 

Jamie continues. “I was impressed with Godel’s depth of testing, visibility of each step and productivity levels. The completed Pen. Testing project confirms that everything within the OBX platform and systematic framework meets ISO 27001 expectations for ongoing monitoring, review, and improvement”.

Jamie highlights that a key differentiator from other penetration testing providers is Godel’s deep knowledge as their software development partner. This existing understanding of the platform and established ways of working ensured the process was both smooth and thorough.

I was happy to utilise our existing partnership, having the assurance they would deliver on time and to the highest quality. Thanks to in-depth testing, Godel gave us confidence in our security position and outlined scenarios in which those vulnerabilities could be used to compromise systems. This provided detailed recommendations and steps to patch as well as validated the fixes on time. 

Jamie Shedley

Posted 21 Aug 2025

share