Security Review of Introducing New Applications into Business Environment

Our business environment does not commonly introduce new applications to avoid adding security risks and compatibility issues. 

 

If we are to add new software, how do I go about reviewing if this software is safe from a security standpoint?

 

At the moment, I am installing it on a test machine and running a Nessus scan, which I feel will just give me a false sense of security. 

 

Edit: I understand I’m suppose to provide the OS, but this is more of a general question for all OS. If I must pick, Windows 10/11 Pro

Edited by hamluis, Today, 01:49 PM.

Moved from Bus Apps to Gen Security – Hamluis.