Penetration testing, often abbreviated as pen testing, is an essential process to ensure you maintain a safe and secure website. But what exactly does pen testing involve, and how can you rest assured your agency partner is covering all potential vulnerabilities for you?
This article will provide a detailed guide to penetration testing, helping you minimise your security risks and ensure your website is fully protected.
In a recent series of articles published in our resource library, we provided an in-depth explanation of the end-to-end process of building a high-performance, enterprise-grade website. (If you’d like to read that series first before learning about pen testing, you can start here).
After you’ve worked with your agency partner to successfully build your website, you’ll also need to ensure your site is protected from cyber security threats. With that in mind, you should understand the important role that pen testing plays in effective website security and maintenance.
What is Penetration Testing?
Penetration testing is a form of website testing that’s used to identify security vulnerabilities When conducting pen testing on your site, your agency will simulate a range of cyber attacks that could be used by cyber criminals or malicious software (malware).
The purpose of this is to identify security weaknesses within your site and take action to prevent them from being exploited in the real world. This approach goes beyond basic tests, as it doesn’t just list the vulnerabilities, it examines how they could be exploited and helps to prevent that from happening.
Why is it Crucial for an Agency to Conduct Penetration Testing?
Website security is critical in today’s digital business landscape. Cyber security threats have become highly intelligent and sophisticated, now capable of penetrating even the strongest security networks.
For instance, global technology giant Acer was the victim of a cyber security attack that demanded a ransom of $50 million USD in recent years.
The outcomes of a cyber attack on your website could be catastrophic, either through sensitive data being stolen, lengthy losses of business continuity, or even reputational damage.
Remember, your site’s security isn’t just vital to you as a business, it’s also something your clients need assurance with when they agree to work with you. You should be taking as many proactive steps as possible to ensure your security measures are rigorous enough to match high levels of risk.
Covering All Bases for Robust Security (in WordPress)
It’s useful to be conscious of the common security weaknesses and pitfalls cyber criminals typically aim to take advantage of.
Security vulnerabilities can be created when your website is running on outdated versions of your platform, or if something hasn’t been configured or integrated properly. Other common pitfalls include weak authentication measures and insufficient protection from the perspective of your users.
With platforms like WordPress, there are some areas in which less experienced agencies could allow security vulnerabilities to creep in as well. For instance:
- Auto-updates – When your platform’s software is automatically updated, changes in the code can cause new security weaknesses to arise.
- Plugins – Using WordPress plugins from untrustworthy sources, or neglecting to update and maintain your plugins properly, can also cause security issues.
This is one of many reasons why it’s important to work with an experienced agency partner who has proven platform-specific knowledge and expertise. Your agency should know your CMS of choice inside out, and should therefore be well aware of all the most common security pitfalls and targets for cyber attacks.
What Does Effective Penetration Testing Involve?
To conduct pen testing, your agency’s security experts will run through a process that attempts to penetrate your site’s security measures.
This is usually done in stages, as follows:
1 – Planning and Preparation
- Review the results and analysis of any previous tests (if there are any)
- Define the scope of the testing, including which tests will be performed
- Gather all necessary data and information on the system to conduct the testing
- Determine the criteria of success or failure for the tests.
2 – Running the Tests
- Use automated tools to scan for vulnerabilities and identify weaknesses
- Attempt to exploit the identified weaknesses
- Repeat the tests with different types of user roles and permissions
- Measure the outcomes against criteria for success or failure
- Create a report on the outcomes and results of the tests.
3 – Post-Testing
- Review the reports and analyse the results
- Remediate and resolve the vulnerabilities that were able to be exploited
- Re-test the vulnerabilities to ensure remediation was successful.
The Benefits of Thorough Penetration Testing
Working with an agency partner who can support you with ongoing pen testing is a necessary step towards gaining enterprise-grade security for your website.
Technology changes so quickly today. Your platform receives updates regularly, your site is always growing, and cyber criminals are constantly finding new ways to breach your defences and gain access to your data. Penetration testing allows you to keep the pace with new emerging vulnerabilities.
Conducting regular pen testing can also help improve client relationships and create competitive advantages as well. In certain industries, a demonstrable commitment to security will be greatly appreciated by your target audience. This can help to differentiate you from the competition and provide the trust required to attract more prospective clients to work with you.
Website Security is a Never-Ending Battle
While every business with a website faces tremendous security risks today, this is a proven process that can help to minimise that risk and give you the confidence you need in your site’s security.
Any agency partner you work with should have the knowledge and expertise to understand the importance of pen testing, and should insist on making this an integral, ongoing part of your site’s maintenance.
Would you like these insights straight to your mailbox?
- Demographics
- Goals
- Challenges
- Motivations
- Preferences
- Frustrations.
- Design look and feel
- Structure and navigation
- Features and functionality
- User experience
- Content and layout
- Calls-to-action
- Speed and performance
- And anything else relevant to your project.
Announcement
10 September, 2022
SoBold achieve ISO 9001 Certification in Quality Management
SoBold are delighted to announce that they have been awarded the world’s most recognised Quality Management System Standard, ISO 9001.
SoBold have worked incredibly hard over the past few years to set and follow processes and procedures as a company that ensure they are providing quality work to their clients.
As the number of enterprise clients grows, SoBold’s ISO 9001 certification will be able to give their clients the assurances they need around SoBold’s consistency and quality services in the work they produce.
ISO 9001 is one of the most commonly used management system across the world and SoBold believes this is going to open up considerably more opportunities with winning tenders and contracts to ensure SoBold continues to be one of the leading WordPress Website Design and Development Agencies in the UK.
As SoBold continue to scale as a business, the need for efficiency has never been greater. It is absolutely essential that all internal communication works to the same processes and agenda and the ISO 9001 certification allows this to be possible.
In order to achieve our ISO 9001 certification, SoBold worked closely with QMS International, who provide expert consultancy to businesses looking to achieve their certification. QMS have a team of over 50 consultants and auditors and they ensure the experience they provide is streamlined and uncomplicated.
SoBold Technical Director, Sam Phillips said:
We are delighted to have been issued with our ISO 9001 certification, recognising our commitment to quality. Over the past 12 months we’ve spent a great deal of time improving and documenting our internal processes to help streamline delivery of projects and ensure we continue to deliver on the high standards we set for ourselves. Achieving this certification is a reflection of all this work.
Would you like these insights straight to your mailbox?
UI Design
18 April, 2023
Understanding the Important Role of Research and Planning When Designing a New Website
Before you begin working on the design elements of a website project, it’s important to begin with, what we at SoBold call, a research and planning phase.
The purpose of a research and planning phase is to ensure that every single decision you make about your design will result in a more effective website, both in terms of your business goals and your users’ needs.
During this phase, you’ll work alongside your chosen agency to define the full scope of your website and all its requirements. This phase will also involve looking closely at your target audience, trends in your market, your competitors, and any data available from your existing website.
This research is extremely useful in shaping the direction you take with your website and helping you to capitalise on certain trends that may align with your strategic objectives.
In this article, we’ll explain how a research and planning phase works to help you know what to expect when entering your own website design project.
If you’d first like to gain a better understanding of the full end-to-end process of web design, read our previous article here.
Website Strategy Workshop
A research and planning phase usually begins with a strategic workshop. This workshop will bring all the relevant stakeholders together, either in person or over a video call, to agree on the goals and parameters of the project.
A workshop is a great collaborative environment to help your agency become even more familiar with your brand, your target audience, and the outcomes you’re looking for from your new website.
Your agency should work closely with you to determine how the objectives you have for your new website feed into your wider business goals. That will be the key to finding the right approach to designing your website.
Once the workshop is completed, the research can begin.
Leveraging Data to Dictate User Experience (UX) Decisions
Every decision you make about your website’s design needs to be informed and justified by data.
As it’s becoming increasingly difficult to capture and retain your audience’s attention, nothing can be left to chance. It’s also negligent to overlook the vast range of valuable insights available to you within your data, and the data in the public domain.
Google Analytics
Your agency should begin by analysing the performance of your website in Google Analytics. This can help to help understand the current behaviours and trends from your website users.
Most businesses use Google Analytics, but few understand the right things to measure. For many businesses, Google Analytics is an untapped gold mine of data and insights that can help you improve site engagement, retain more visitors, and ultimately grow your business.
You can conduct a thorough analysis of things like:
1 – Your Audience Acquisition
Google Analytics can help you identify where your visitors have found you and accessed your website from.
Whether through organic search, social media, direct, or referral, you’ll learn how all your visitors are acquired. This information is vital, as it can allow you to tailor different parts of your website to certain visitors at various stages of their journey with you.
For example, if organic traffic is a key driver of your website traffic, it’s important for your agency to ensure that lots of the hierarchical structure of copy is maintained throughout the site.
This is also helpful in optimising your wider digital marketing strategy, by recognising what’s working well and what isn’t, from a web traffic perspective.
Bonus Tip – If you’re running Google Adwords, make sure your agency partner is aware of all the URLs that need to be redirected, and that this doesn’t affect your ad spend.
2 – Your Visitors’ Demographics
Google Analytics can provide detailed insights into your website’s visitors, with data covering everything from age, gender, location, language, and more. This helps you gain a clear, specific understanding of who’s coming to your website, and that can inform important decisions about your design.
It will also help you determine whether or not you’re attracting the right audience, which could alert you to a need for changes in your design and branding.
Bonus Tip – If you have a lot of visitors from other countries, you may need to talk to your agency about setting up a content delivery network (CDN) on the hosting server to deliver content from that location.
3 – Your Visitors’ Interests
You can use Google Analytics to view information about your visitors’ interests, past searches, and other online behaviour. This can help you identify what they’re looking for when they’re visiting your site. You can then tailor your design and content to match any unaddressed questions, challenges, or needs they might be looking to meet.
4 – Your Visitors’ Behaviour
Google Analytics can give you a graphical representation of your visitors’ behaviour when interacting with your site. This includes where they’ve entered your site, where they went next, what their whole journey through your site looks like, and where they eventually left.
This provides great opportunities to optimise certain pages that aren’t performing well enough. You can also learn what your visitors respond well to from pages that already have strong engagement.
Mapping your users’ journeys may also uncover insights to help you create links between certain services, hone in on special offers that will drive increased conversions, and many other ways to boost engagement.
5 – Your Conversions
Your conversions are a critical measurement of your site’s success. Whether you’re aiming for subscriptions, demo sign-ups, contact form submissions, downloads, or anything else, failing to achieve your conversion targets means something isn’t working.
You can use Google Analytics to set goals for conversions, monitor performance, and highlight areas where you need to improve.
Taking this analytical approach will ensure your website’s design is tailored to supporting your strategic objectives.
Bonus Tip – On July 1, 2023, for continued website measurement, you’ll need to migrate your original property settings to a Google Analytics 4 (GA4) property. Your agency partner should be on top of this though.
Data Tracking
Next, if applicable, your agency should review any existing tracking resources you have in place on your website.
A successful website design is based on many different factors, each an important component in engaging your audience, converting them into clients, and growing your business.
This is why it’s useful to look into key metrics you may use to measure your success against, then use the related data and analytics to inform your design. Tailoring your UX based on your findings will ensure your website is designed specifically to optimise your user behaviours.
Bonus Tip – If you don’t have any additional tracking in place, both HotJar and Crazy Egg are great tools to use.
Analysing External Factors
Understanding Your Target Audience
One of the most important parts of building a new website is understanding the preferences of the audience you’re targeting. You know what your ideal customer profiles (ICP) look like, but do you understand how they behave when interacting with websites online?
Every decision about your website’s design must be made with consideration and empathy for your users. As touched on in the previous section, audience research will include a wide range of variables, including:
This part of the research will contribute towards building user personas and user journeys at a later stage of the design process.
A user persona is a fictional person that you can use to represent the target audience of your website. These personas will help you focus on the desired interactions between the ideal user and the website you’re building. Creating personas also helps to map the users’ needs to your goals for the project.
A user journey is a path that a user may take to reach their goal when using your website. Hypothetical user journeys are created at this stage, as they help to identify the different ways the site’s design needs to enable the user to achieve their goal as quickly and easily as possible.
With these, you can begin to paint a picture of how your target audience will interact with your website, allowing you to create a satisfying user experience.
Industry Landscape
Researching your industry landscape will reveal a great deal about what to do, and what not to do. An analysis of the wider market you operate in will help you benchmark yourself against industry leaders, and highlight mistakes being made by any businesses lagging behind. It’s useful to be aware of any industry trends or points of influence that may inform your website’s design as well.
Bonus Tip – You’re an expert in your industry. Your agency is not, but they are experts in web design and marketing trends. Work closely together by leveraging each other’s knowledge and expertise to paint the full picture of what makes modern websites successful from a design perspective.
Competitor Research
It’s also crucial to conduct a thorough competitor analysis to see what the benchmark is for a successful website in your industry. Conversely, some competitors may provide examples of bad design that can help you identify pitfalls to avoid with your own site.
Around five of your competitors is usually a good number to look into. To do this, your agency should work with you on assessing their websites in key areas such as:
This research will allow you to recognise opportunities, gaps in the market, important trends, and any other insights you can gather.
Making Data-Driven Decisions
Following all this research, your agency will work on developing a strategy for your website, recommending the optimum route through the rest of the design process.
Your agency will provide a report detailing all the findings from the strategy workshop and research. This should often include a sitemap document and a content framework for your site as well.
An agency should always provide the opportunity for feedback and iterations on crucial documents like this, so you should then be given time to review this and provide feedback.
Bonus Tip – Don’t be afraid to ask questions, challenge things you’re unsure about, or change your mind during this feedback and revision process. These are big decisions, and it’s important to be 100% sure about the direction your website’s design is being taken.
Once you’ve worked through this feedback with your agency and you’re happy with everything they’ve planned, you can then move into the phase of the project that focuses on the visual identity of your site.
Bringing it All Together in the Design
A thorough, well managed research and planning phase is an essential part of designing a successful website. By having a strategy backed up by tangible data in place, you’ll be able to work through the remaining phases of the overall design process in a more efficient and effective way.
It also helps anticipate any challenges or potential issues in the design process and allows you to mitigate them before they arise, saving you time and money in the long-run.
This phase is arguably the most important in ensuring your agency can meet your specific requirements and expectations, on time and within budget.
If you’d like to discover what’s involved in the next phase of a web design project, exploring the visual identity of your site, read our next article here.
Would you like these insights straight to your mailbox?
Latest from agency
24 November, 2022
SoBold obtain Skilled Worker Sponsorship Licence
SoBold are delighted to announce that we have obtained a sponsor licence in order to sponsor international skilled workers to come and work at SoBold.
SoBold have always put heavy emphasis on hiring the best global talent for our needs, and we have strengthened our ability to do this by obtaining a Skilled Worker Sponsorship Licence.
With all sponsorship licences that the Home Offices grants they need to be reassured that the sponsors can live up to the “significant trust” that the department places in them. The Home Office further made checks that SoBold is a “honest, dependable and reliable” workplace, and capable of meeting the responsibilities that it expects from sponsors.
Since being granted our Skiller Worker Licence, we have been fortunate enough to put it to use to hire two new team members.
Anna de Moraes, joined SoBold, from Portuguese company, SpringParrot. Anna had been able to work remotely, and was living and working from the UK, when she got in touch with SoBold. Anna, who is natively from Brazil, said of the process:
“The steps were pretty clear and the whole process was quite simple. I’ve had friends waiting years for their visas to be approved while we were able to complete everything in a short period of time! I was already excited to start and, in a blink of an eye, I was finally part of the SoBold team!”
More recently, SoBold hired Santosh Gajera as a Back End WordPress Developer. Santosh has relocated from India in order to provide his services to SoBold. When asked about the process behind him getting his Skilled Worker VISA granted, Santosh said:
“To keep my IT career moving forward, I needed sponsorship from an organisation that sponsored my visa. SoBold has been an invaluable help in obtaining my Tier-2 (Skilled worker) visa. I am very thankful to their hard work and professionalism. My documents were handled very scrupulously by them, and they provided full support throughout the whole application process . I got my visa approved in two days, which is amazing, and they handled everything for me.”
SoBold worked with all-in-one digital platform, Nation Better in order to achieve our sponsorship licence and the process was streamlined, affordable and transparent.
SoBold already have a diverse talent pool, with staff from all over Europe, and with the help of Nation Better, we have been able to improve the way in which we hire international talent and open up opportunities further afield. We look forward to continue growing our team with exceptional overseas talent and have access to a wider talent pool.
SoBold Managing Director, Will Newland said:
We are absolutely delighted to welcome both Anna and Santosh to the SoBold team. Without our Sponsorship Licence we would be missing out on a large pool of talent that is the future of our business. We very much look forward to continuing to use our Sponsorship Licence to our advantage and giving skilled employees the opportunity to come and work here at SoBold.
For more information on what current vacancies we have, please visit our website careers page.
Would you like these insights straight to your mailbox?
Digital Business
29 March, 2023
Just How Scalable is WordPress?
When looking at content management systems (CMS), scalability refers to the ability to expand and grow your site with more content, capabilities, features, and functionality.
Your CMS is a long-term investment, and its scalability will have a strong influence on whether or not that investment is successful.
“When sustainable business growth is a top strategic objective, you need full confidence that your web presence can seamlessly scale and evolve to support that growth.”
This requires a platform that allows you to quickly and easily create new features and functionality. Ideally, you should be able to do this without having to invest significant time and resources into additional costly development work.
WordPress is One of the Most Scalable Platforms Around
Evidence of WordPress’s great scalability can be found in the fact that almost 45% of the world’s websites are built on the platform. That includes global enterprises such as investment firm Blackstone, research and advisory leader Forrester, the NHS England, and leading pharmaceutical company Hutch Med.
This is because WordPress websites can seamlessly scale as your needs change and your business grows. You can easily add a high volume of new content to your site at speed without compromising on quality.
WordPress is also renowned for how easily you, or your development partner, can build bespoke features and functionality, so your site can keep evolving with new capabilities to support more advanced requirements.
“No matter the size or complexity of your site, WordPress can provide fast, intuitive development capabilities with ongoing growth acting as a natural outcome.”
Using WordPress at Scale
Developing, managing, and maintaining a high-performance website at scale is a complex challenge. For that reason, it’s important to work with an experienced web design and development agency who can enable continual growth and support you through it.
Part of your agency’s services will include configuring your platform, and building your site in the back-end, in a way that encourages long-term scalability. We’ll explain our own approach to this in more detail in the next section. But first, let’s look at some of the fundamental ways to use WordPress at scale:
Bespoke Features and Functionality
If you want to build out your website with new capabilities, WordPress stands above all its competitors thanks to its ability to develop bespoke features that are unique to your site.
WordPress is built on PHP, which is the most popular development language around, as it’s currently used by over three quarters (77.5%) of all websites with a known server-side programming language. With PHP, WordPress has a significant advantage over other CMSs, because it allows you to create virtually anything and integrate it with the platform.
WordPress Plugins
WordPress also comes with a vast range of plugins, which can help with adding to, and enhancing, the existing functionality of your site. Plugins are an essential aspect of WordPress development, but it’s crucial that you only choose the most reputable, tested, and proven plugins.
Your agency partner should be experienced in this plugin selection and use their past experience to recommend the best ones to use for your specific requirements. Your agency partner should also be able to advise you on how plugins will scale with increases in website size or traffic volume to help preserve your site’s performance.
Using plugins that are not regularly updated, or that come from unknown development owners, could harm your site by making it heavier, slowing down your page loading times, and possibly even creating security vulnerabilities.
Using a particularly large number of plugins is another situation that could result in slower loading speeds or other performance issues. Be mindful that use of plugins can reduce the bespoke development time needed to build your site, and the use of too many plugins could cause performance issues. If you find yourself in this situation, it could be an indication that your development partner might actually be taking shortcuts.
The Importance of a Trusted Partner
Whether you’re using plugins or building new bespoke features, your agency will be able to take care of all of these crucial aspects of your development for you. Their support and guidance will ensure you can expand your site freely without running into any technical issues.
Once you have everything you need in place, your agency will then be able to accelerate the speed at which you can scale moving forward. A great agency partner will also provide you with ongoing education and support, allowing you and your team to build your site out easily and efficiently by yourself too, whenever you want or need to.
Taking a More Scalable Approach – Building with Blocks
While many agencies still use a more traditional method of developing sites with WordPress, taking a block-based approach provides even greater opportunities for dynamic scalability.
As an alternative to the time-consuming practice of inputting text and images into a rich text editor in your CMS, the block-based approach allows you to create each page on your site more easily with a set of pre-built components.
Components are blocks of code with pre-defined style and input types. You can use and re-use these components across multiple pages of your site to scale it at a much faster pace. Any time you want to create a high volume of new content, you simply pick your already-built components and place them in the correct positions.
This is an approach that enables virtually limitless growth of your website at speed with a high level of quality and accuracy. Building components that can be reused across your site will also deliver added benefits like increased efficiency and reduced costs. This in turn provides you with more time to focus on developing better services and experiences for your site visitors.
The block-based approach to building websites is another way to make your WordPress platform leaner for better performance as well, because it removes the need for a bloated library of unnecessary plugins and features.
An Enterprise-Grade CMS
Scalability should be a key aspect of your criteria when selecting a CMS to build a website. Rapid growth and flexibility are crucial for your platform of choice.
Despite some still mistakenly thinking it might not be up to the task, you can use WordPress to build large, robust, high-performance sites at speed, and easily adapt them as your requirements change.
This arguably makes WordPress one of – if not the – best CMS options available today. When you look at some of the world’s leading businesses currently using the platform to great success, that argument becomes much easier to appreciate.
Like with any CMS, though, the key to successful scalability is having the support of an experienced, trusted agency partner behind you, ensuring you’re leveraging the platform to its full potential.
Would you like these insights straight to your mailbox?
Development
9 June, 2023
Craft vs WordPress: Which Platform is the Best Option for Your Business?
When you’re responsible for managing a new website development process, you’ll have some difficult decisions to make. Two of the most difficult decisions will be finding an agency that you can trust, and finding a content management system (CMS) that will give you the flexibility and performance to drive your business forward online.
Your CMS will play a significant role in helping you meet your specific website requirements and enabling you to achieve your strategic goals.
We’ve compared lots of different CMSs in our recent series of articles, and each of them have their own strengths and weaknesses. In this article, we’ll compare WordPress and Craft.
Ease-of-Use
It’s vitally important to ensure that the platform you choose is straightforward to manage. You’ll want a platform that’s approachable, with a low barrier for entry, to avoid any challenges in the daily running of your website.
Craft’s Ease-of-Use
Whilst Craft is an open-source CMS, it requires technical development expertise in order to manage the platform once built. Management for non-technical teams will likely be difficult, thus limiting you in your ability to build out content and new features over time.
If you do have expertise in-house, that will allow you to manage your website more easily, as the CMS itself is efficient for publishing and managing content.
Craft also makes it easy to collaborate and share responsibilities across teams without any interference or complications. For example, you can save draft versions of pages and share them with colleagues – with private links that don’t even require you to be signed in – before publishing live on your site.
WordPress’s Ease-of-Use
Conversely, WordPress is specifically built so that content can be managed in-house. WordPress provides you with a convenient, intuitive user interface (UI) that allows quick and easy publishing, management, and editing of content on your sites.
Put simply, WordPress is a more traditional CMS that’s suitable for a wider range of users and teams. It allows you to easily manage the content on the front-end, whilst also facilitating a quick time-to-market for the development of your website.
This ease-of-use also helps to share responsibilities throughout your team.
Flexibility
Flexibility will always be high on your list of priorities when looking for a CMS. Tailoring your platform to fit your own unique requirements is a crucial capability in today’s digital business landscape.
How Flexible is Craft?
Craft is all code-based, which allows you to build virtually any type of website you want, with great flexibility. The only limitations, really, will be with the platform-specific development capabilities of your agency.
How Flexible is WordPress?
WordPress also offers a great deal of flexibility and customisation, but the difference here is that it’s unlikely you’ll need to alter much about WordPress’s pre-existing tools and features to be able to build a website you’re happy with.
With WordPress, you have everything you need to build a high-performance website. But that’s complemented by the flexibility to make enhancements and seamlessly scale the platform with new bespoke features if you wish to.
Integrations
Before you select a CMS, you’ll need to ensure it can easily integrate with any existing systems your business has in place. Whilst most CMSs will be able to integrate well with a variety of third party systems, it’s important to be aware of any limiting capabilities of the platforms.
Craft’s Integrations
Integrations with the most popular third-party platforms are typically supported in Craft through plugins. However, you may need to integrate manually with platforms using API’s.
While this gives you more control over your CMS’s functionality and security, it’s another area in which you’ll likely have to spend more time and money on agency development work. Those integrations will also need to be maintained and updated manually as well, which may be a financial and time burden on your agency.
WordPress’s Integrations
WordPress’s global popularity means that it’s readily compatible with most of the third-party systems you’ll already have within your business.
You’ll have a wide range of native plugins available that will integrate your WordPress site with virtually any other tool. Even if you have more advanced requirements, it’s usually easier for your agency partner to do this bespoke development work in WordPress than it is with other CMSs.
Developer Communities
Investing in a platform that’s supported by a community of developers will provide you with additional benefits and advantages. It’s always helpful to have other users working to continuously create additions and updates to help the CMS grow and improve.
Craft’s Community
Craft has a passionate community working hard to help enhance the platform, but it’s only a fraction of the size when compared to more mainstream CMSs like WordPress.
Still, size isn’t all that counts here. Craft’s community is very supportive and highly active on channels like Slack and Discord. Craft also has a StackExchange, which is a Q&A forum that many developers use to share learnings as they work through projects.
The WordPress Community
At 20 years old now, WordPress’s popularity and global market share means it has an enormous community supporting it.
WordPress’s community consists of millions of users who work tirelessly to offer support, collaboration, knowledge sharing, events, and much more.
Any questions, problems, or requirements you have are often answered very quickly by members of the WordPress community. This also results in exciting new enhancements and features being released on a near-constant basis to drive the platform forward.
Being part of the WordPress community will also give you access to free events that help users learn to get as much value as possible from the platform.
Cost and TCO
Cost is a key factor when choosing a CMS. It’s also important to remember the up-front costs aren’t the only thing you need to consider here. Since your CMS is a long-term investment, you should be looking for a low total cost of ownership (TCO) for all your related costs over time.
Craft’s Initial Investment and Ongoing Costs
With Craft, you’ll need to purchase either the pro or enterprise plan. Pro comes with a one-time payment of £250 per project, and an additional annual payment to continue receiving updates. The cost of the enterprise plan will vary depending on your requirements and usage.
As mentioned earlier, the costs associated with the platform may also be high. This is due to the need for agency support across many aspects of your project, from setting up your website, to integrations, to ongoing maintenance.
The actual costs of development with Craft may also be higher than with other CMSs because of the smaller scale and more specialist nature of the platform.
It’s also worth mentioning that Craft CMS hosting services are more limited than those of WordPress, again likely making them more expensive.
WordPress Cost and TCO
On the most part, WordPress is a more cost-effective platform than Craft, with a lower TCO.
WordPress is free-to-use, limiting your initial costs to just hosting, development agency fees, and post-deployment support.
As touched on earlier, achieving a much faster time-to-market will allow you to launch a quality website quickly so you can begin gaining strong ROI right away.
Another cost-related benefit of WordPress’s ease-of-use is that if there’s bespoke development work you need your agency to complete, it will usually come at a reasonable cost. Because Craft is such a niche and technical platform, bespoke development work often comes at a premium in comparison to the more widely-used WordPress.
When the WordPress platform receives updates, it’s often fairly quick and straightforward for your agency partner to test and maintain your site.
These advantages add up to create a lower TCO for WordPress than you’ll have with other enterprise CMSs.
Conclusion
Both Craft and WordPress are both great CMSs in their own right, and would serve most businesses. Although, it’s difficult to deny that WordPress is a much more approachable platform than Craft for the average user.
If you’re a team with a great selection of existing development skills, Craft can provide you with some innovative capabilities and could be the right platform for you.
The key thing to remember when making this evaluation is that you should select the platform that directly aligns with your own specific circumstances and requirements.
Every business, and every web development project, is different. Carefully consider your objectives, budget, users, in-house skills, and any other factors that may come into play. That should allow you to determine which CMS is the right one to deliver what you need.
If you need more help finding a CMS for your new website project, read our comprehensive guide to understanding and evaluating the options for large businesses here.
Would you like these insights straight to your mailbox?
