CASE STUDY – BANKING

An interview with an individual responsible for the procurement of penetration testing in a large international bank explained that they have a wide and deep set of requirements for their suppliers. Aside from the standard ‘procurement style’ requirements (eg. about good reputation, capability and fitness for purpose) that go into a Request for Proposal (RFP), they are looking for suppliers to:

  • Be flexible, so that they can react to an incident very quickly, but still in a highly competent manner – as well as deal with special requirements for out of hours testing;
  • Conduct pre-employment screening (PES) of employees (including analysis of CV, background checks, security clearance), which the bank will then carry out a sample ...

Get Penetration Testing Services Procurement Guide now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.