225
10
Ot h e r Pr O d u c t s
e security service provider world changed dramatically since 2002.
e industry did not hold professional service oerings in the same
value as they did in the good old days of the late 1990s. Penetration
testing services were severely challenged by boutique security rms
that crawled out of the woodwork oering radically cheaper and fully
automated services (see Chapter 5). Many rms stepped back from pro-
fessional services (consulting/manual penetration testing) altogether.
As I have stated previously, the penetration testing space became a
compliance-only show in that the only penetration testing engage-
ments sold were for organizations that needed to show auditors that
an independent third party had assess ...