Penetration Testing and Scanning Policy

7 months ago AndyC

System or network vulnerabilities and security threats can severely impact business operations or even shutter its doors. However, these incidents can be prevented by proactively detecting potential threat opportunities.

System or network vulnerabilities and security threats can severely impact business operations or even shutter its doors. However, these incidents can be prevented by proactively detecting potential threat opportunities.

The purpose of this policy from TechRepublic Premium is to provide guidelines for appropriate penetration testing and scanning of computer systems and networks. It includes preparation, conducting the tests and how to address the results.

From the policy:

Penetration tests can be basic, checking for systems not protected by passwords, for instance. They can also be comprehensive — aggressively simulating hacker behavior by ‘rattling doorknobs’ and trying to exploit any available areas of weakness. Regardless of the intensity of the tests, the overall goal is to identify opportunities to properly safeguard not only systems and networks but the company and staff. As the saying goes, it’s always better to find that unlocked window in your home before someone else does.

The download comprises a 10-page PDF and Word document.

Previously priced at $99, this is now available to download for $9. Or free with a Premium annual subscription: click here to find out more.

TIME SAVED: It took 14 hours of writing, editing and research to create this content.

About Author

AndyC

Andy Curtis is an award-winning security consultant, researcher and public speaker. He has been working in the computer security industry since the early 1990s, having been employed by state and federal government, leading healthcare and banking providers across three continents. He has given talks about computer security for some of the world’s largest companies, worked with law enforcement agencies on investigations into hacking groups, and is a regular voice on TV and radio explaining IT security threats.

See author's posts

Tags: , , , , , , , , , , , ,

More Stories

US AI Experts Targeted in SugarGh0st RAT Campaign

US AI Experts Targeted in SugarGh0st RAT Campaign

1 day ago AndyC
A Human-Centric Security Approach, Supported by AI

A Human-Centric Security Approach, Supported by AI

1 day ago AndyC
Black Basta Ransomware Struck More Than 500 Organizations Worldwide

Black Basta Ransomware Struck More Than 500 Organizations Worldwide

1 day ago AndyC
Get on Cybersecurity Certification Track With 5 Off These Courses

Get on Cybersecurity Certification Track With $145 Off These Courses

2 days ago AndyC
<div>Restore Damaged Files & Save Your Business for Only </div>

Restore Damaged Files & Save Your Business for Only $50

2 days ago AndyC
Proofpoint Among First in Enterprise Archiving Industry to Achieve PCI Compliance Attestation

Proofpoint Among First in Enterprise Archiving Industry to Achieve PCI Compliance Attestation

2 days ago AndyC

You may have missed

North Korea-linked IT workers infiltrated hundreds of US firms

North Korea-linked IT workers infiltrated hundreds of US firms

10 hours ago AndyC
The who, where, and how of APT attacks – Week in security with Tony Anscombe

The who, where, and how of APT attacks – Week in security with Tony Anscombe

19 hours ago AndyC
Turla APT used two new backdoors to infiltrate a European ministry of foreign affairs

Turla APT used two new backdoors to infiltrate a European ministry of foreign affairs

1 day ago AndyC

Friday Squid Blogging: Emotional Support Squid

1 day ago AndyC

How to Protect Yourself on Social Networks

1 day ago AndyC

Subscribe To InfoSec Today News

You have successfully subscribed to the newsletter

There was an error while trying to send your request. Please try again.

World Wide Crypto will use the information you provide on this form to be in touch with you and to provide updates and marketing.