Follow these six steps to ensure you are protecting your business’ websites. The First step is create an active sponsorship by having teams within the IT department collaborate to ensure the best security. The second step is enforcing and defining the security application process. The third step is developer training, to ensure secure coding is being put into place. The fourth step is to be one step ahead of potential attacks by understanding who would want to corrupt your site and steal your information. The fifth step is to make sure you are doing consistent security tests to ensure your site is tough enough to thwart a hacker. Lastly step six blocks attacks by using WAFs (Web Application Firewalls) that block incoming attacks such as cross-site scripting. If you enforce these six steps you will successfully avoid web application breaches.