4The Business Perspective
To ensure the test is valuable to the overall security program, in addition to being financially effective, the demands of the business must be understood. Moreover, the perception of security by the management and the sponsor of the test need to be evaluated. What are the goals of the test? What is the scope? What are the limitations and why? Finally, what elements of the test are going to be employed, to what granularity, and are they going to expose vulnerabilities that relate to your security risks? These questions and more are addressed to make certain the test is effective for the business.
You can liken a penetration test and all its options to an amplifier. An amplifier will have several adjustments for bass, ...
Get CISO's Guide to Penetration Testing now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
