O'Reilly logo

Penetration Testing Services Procurement Guide by CREST

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

PART IV: CHOOSING A SUITABLE SUPPLIER

Introduction

If your organisation decides to appoint an external provider of penetration services, it is important that you choose a supplier who can most effectively meet your requirements, but at the right price.

This part of the Guide will help your organisation to:

  1. Review your penetration testing requirements;
  2. Define a set of supplier selection criteria;
  3. Identify possible suppliers to be considered;
  4. Select an appropriate supplier who can meet (or exceed) your requirements.

‘What we are looking for from a supplier is certainty, prioritisation, trust and security’

A. Review requirements

The first step is to make sure that whoever chooses the supplier fully understands your organisation’s requirements, ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required