Penetration Testing by James Hayes, Nick Furneaux, Jims Marchang, Rob Ellis, Jason Charalambous, Moinuddin Zaki, Peter Taylor, Roderick Douglas, Felix Ryan, Ceri Charlton, Gemma Moore, Tylor Robinson, Sharif Gardner

Once the outcome of a penetration test has been reported and delivered to the client, and the risks fully presented and discussed, there follows a ‘remediation phase’. This is the most crucial element of the penetration test lifecycle where identified vulnerabilities are addressed in order to reduce or negate the impact they have on the business.

One of the primary reasons this phase is often not given enough attention is the perception or mindset of organisations that consider a penetration test programme as a box-ticking exercise; where the initial delivered report can be used as supporting evidence for various purposes such as compliance, a tender ...