Chapters 1-19 of the series were all about building an #informationsecurity program with the most structure & rigor possible. This final installment is about trying to tear that program apart.
#penetrationtesting is the simple idea that you pay a #hacker (one of the good ones) to do everything within their power (and the signed statement of work) to break into your systems. That might include your wireless networks, software that you’ve designed in-house, and even your building using lock picking & #socialengineering tactics.
It’s not uncommon for an organization to want to start with this step, and it’s easy to see why. If you’re just starting your #cybersecurity journey, you want to know what your current posture is, right?
That’s an admirable thought, but a pen test is the last thing you want to pay for in this case. If you’ve given no thought to your security, a good and honest pen tester can probably just tell you how they’d break in (and save you thousands of dollars and a bunch of time).
If you’re in the early stages, get a #riskassessment, not a penetration test. A pen test will tell you how someone might break in; a risk assessment will tell you what to improve and how to improve it.
Check out the rest of the 20 for 2020 video series:
https://www.tetradefense.com/wp-content/uploads/2020/04/20-for-2020-18-1.png6751200Marlene Joneshttps://www.tetradefense.com/wp-content/uploads/2019/12/Web_Orange_White_sized-300x97.pngMarlene Jones2020-04-14 10:26:002020-04-27 10:28:2620 for 2020: "The Obligatory Car Video"
https://www.tetradefense.com/wp-content/uploads/2020/04/20-for-2020-18.png6751200Marlene Joneshttps://www.tetradefense.com/wp-content/uploads/2019/12/Web_Orange_White_sized-300x97.pngMarlene Jones2020-04-06 12:00:002020-04-20 12:00:3120 for 2020: "Mind Your Own Business"
https://www.tetradefense.com/wp-content/uploads/2020/04/20-for-2020-17.png6751200Marlene Joneshttps://www.tetradefense.com/wp-content/uploads/2019/12/Web_Orange_White_sized-300x97.pngMarlene Jones2020-04-03 11:47:002020-04-20 12:01:0620 for 2020: "Awareness Training is Number 17..."
https://www.tetradefense.com/wp-content/uploads/2020/04/20-for-2020-14.png6751200Marlene Joneshttps://www.tetradefense.com/wp-content/uploads/2019/12/Web_Orange_White_sized-300x97.pngMarlene Jones2020-03-18 10:45:002020-04-20 10:46:2720 for 2020: "Wait, Didn't He Talk About This Already?"
https://www.tetradefense.com/wp-content/uploads/2020/04/20-for-2020-13.png6751200Marlene Joneshttps://www.tetradefense.com/wp-content/uploads/2019/12/Web_Orange_White_sized-300x97.pngMarlene Jones2020-03-16 10:16:002020-04-20 10:17:3320 for 2020: "Live From New York, it's 20 for 2020!"
https://www.tetradefense.com/wp-content/uploads/2020/04/11C.png6751200Marlene Joneshttps://www.tetradefense.com/wp-content/uploads/2019/12/Web_Orange_White_sized-300x97.pngMarlene Jones2020-03-03 16:23:002020-04-13 16:24:1220 for 2020: "The Never Ending Struggle"
https://www.tetradefense.com/wp-content/uploads/2020/04/Chap-10.png6751200Marlene Joneshttps://www.tetradefense.com/wp-content/uploads/2019/12/Web_Orange_White_sized-300x97.pngMarlene Jones2020-02-17 17:17:002020-04-06 17:17:5020 for 2020: "Two is Better Than One"
https://www.tetradefense.com/wp-content/uploads/2020/01/4.png6751200Lauren Reidhttps://www.tetradefense.com/wp-content/uploads/2019/12/Web_Orange_White_sized-300x97.pngLauren Reid2020-01-30 08:54:292020-03-30 18:50:2920 for 2020: "No one will draw the lines in the sand for you"
https://www.tetradefense.com/wp-content/uploads/2020/01/2-1.png6751200Lauren Reidhttps://www.tetradefense.com/wp-content/uploads/2019/12/Web_Orange_White_sized-300x97.pngLauren Reid2020-01-20 15:37:282020-03-30 19:03:5720 for 2020: "Know What You Have" (Software Edition)
https://www.tetradefense.com/wp-content/uploads/2020/01/1.png6751200Lauren Reidhttps://www.tetradefense.com/wp-content/uploads/2019/12/Web_Orange_White_sized-300x97.pngLauren Reid2020-01-16 15:45:072020-03-30 19:06:1620 for 2020: "Know What You Have" (Hardware Management Edition)