The Falanx Cyber Guide To Penetration Testing

What is Penetration Testing and Why Should Your Organisation Use It?

Falanx views penetration testing (also known as ‘pen testing’ or ‘ethical hacking’) as: “a method for gaining assurance in the security of an IT system by attempting to breach some or all of that system’s security, using the same tools and techniques as an adversary might.”

Penetration testing is a core tool for analysing the security of IT systems, but it’s not a magic bullet.

Penetration testing should be viewed as a method for gaining assurance in your organisation’s vulnerability assessment and management processes, not as a primary method for identifying vulnerabilities.

A penetration test should be thought of as similar to a financial audit. Your finance team tracks expenditure and income day to day. An audit by an external group ensures that your internal team’s processes are sufficient. Equally, you should know what the penetration testers are going to find, before they find it. Armed with a good understanding of the vulnerabilities present in your system, you can use third-party penetration tests to verify your own expectations.

Our highly experienced penetration testers may find subtle issues which your internal processes have not picked up, but this should be the exception, not the rule. The aim should always be to use the findings of a penetration test report to improve your organisation’s internal vulnerability assessment and management processes.

What Will a Penetration Test Tell You?

Typically, our penetration tests are used to identify the level of technical risk emanating from software and hardware vulnerabilities. Exactly what techniques are used, what targets are allowed, how much knowledge of the system is given to our testers beforehand and how much knowledge of the test is given to system administrators can vary within the same test regime.

A well-scoped penetration test can give confidence that the products and security controls tested have been configured in accordance with good practice and that there are no common or publicly known vulnerabilities in the tested components, at the time of the test.

Click to view all articles for the EPIC:
Or click to view the full company profile:
Facebook
Twitter
LinkedIn
Falanx Cyber Security

More articles like this

Falanx Cyber Security plc

How to develop a data infraction response plan

A dating breach response plan outlines how an economy be respond to a breach. Follow these five steps, both use our free template to develop your organization’s plan. Data breaches happen at all organizations. Even the

Falanx Cyber Security

Thwarting the most advanced cyber threats

Cyber security is no longer what it used to be. That’s because cyber threats have become more persistent, sophisticated and voluminous, and the switch to hybrid working has only accelerated this trend. Rob Shapland from Falanx

Falanx Cyber Security

Inspecs has eyes-on Security 24/7/365

Background Inspecs Group Plc is global leader producing large volumes of high quality eyewear for fashion, sports, lifestyle brands and patented concept eyewear. The Inspecs group of companies produce in-house for a global network of distribution to

Falanx Cyber Security

Don’t let hackers ruin your holidays

Holidays are approaching and now is the time of year when IT staff and business owners start to wind down. But this is the busy season for ‘holiday hackers’. The week prior to and during Christmas

Falanx Cyber Security

Falanx Group further progress in sales with good order growth

Falanx Group Ltd (LON:FLX), the AIM listed provider of cyber security services, has announced its interim results for the six months ended 30 September 2022. Financial Highlights for six months to 30 September 2022 • Orders for our core

Falanx Cyber Security

Hospitals are at a high risk of cyberattacks

Are Hospitals at a High Risk of cyberattacks? Yes, they are! Since they store sensitive data and usually have weak cyber defences. Thus, putting Digital Health at stake. Even the pandemic has raised the increase in the rate of cyberattacks on Hospitals

Falanx Cyber Security

How to avoid the $1 million bill of a ransomware attack

Your business will be targeted by a cybercriminal this year. That’s not an exaggeration, or even a scare tactic. Unfortunately, it is the harsh reality: 61% of mid-sized businesses (the most popular target for hackers) experienced a cyberattack last

Falanx Cyber Security

Finalists at the Cyber Security Awards 2022

Falanx Group are delighted to have 2 finalists at the Cyber Security Awards, 2022 being held at One Moorgate Place, London! Nicola Hartland, Chief Revenue Officer, is finalist in the category Woman of the Year. Rob Shapland,

Falanx Cyber Security

Charities Cyber Essentials fortnight 7-18th November

Cyber criminals are attracted to money. And that makes charities – and the information they hold – a target. Data on beneficiaries, supporters and volunteers as well as information on invoice and payment details can be

Falanx Cyber Security

Most Inspiring Women in Cyber awards 2022

The nominations for the Most Inspiring Women in Cyber awards are out! It’s always wonderful to read about the incredible women in our industry, who are making fantastic contributions and paving the way for others. In

Falanx Cyber Security

Almost half of Irish SMEs hit by multiple cyber attacks

Almost half of Irish small and medium businesses have experienced multiple cyber attacks in the last three years, according to a new study. The study from Microsoft and Vodafone states that the average financial loss per

Falanx Cyber Security

Falanx Group strengthens Board with new appointments

Falanx Group Ltd (LON:FLX), the AIM listed provider of cyber security services, has announced the appointment of William Kilmer as an independent Non-Executive Director and Richard “Rick” Flood as an Executive Director and with immediate effect.