Penetration testing (or pentesting) is an important part ofkeeping networks and systems safe from those who would attack them.However, because similar methods are used by attackers andpenetration testers alike, some people and organizations may beapprehensive about unleashing those methods on their ownnetworks.
Instructions for Main Post
Place yourself in the position of someone responsible for hiringa penetration testing firm to test the security of yoursystems.
Your initial post should include two parts:
- Your main concerns about the process and considerations youwould need to take into account before commissioning apentest.
- Information you found during researching how to best addressyour concerns. At a minimum this should include:
- Qualifications or certifications that pentesters shouldhave
- Questions or surveys you can provide to prospectiveprofessionals/firms as part of the selection process
- Industry guidance on how to engage and conduct a penetrationtest
