What is an Ethical Hack?
An ethical hack (also know as a penetration test) is the process of evaluating your information security measures. The most common procedure is to attempt to infiltrate the organization’s network and systems, the same way a malicious user may try to; then to analyze the results of such attempts to identify areas of weakness and vulnerability. These weaknesses and vulnerabilities are then documented and a recommendation for remediation may be suggested in the report.
Why conduct an Ethical Hack?
There are several reasons why an organization may choose to perform a penetration test, including:
- Identification of the potential threats facing the organization’s information assets, in order to fully quantify the risks facing the organization.
- Reduction of the organization’s IT security costs and provide a better return on IT security investment by identifying and resolving vulnerabilities and weaknesses.
- Protection of the organization’s reputation with its customers; a breach of security would be damage the credibility and reputation of an organization.
- Compliance with industry or governmental regulations.
White Paper
Security Assessment vs. Penetration Testing
Solutions
Security Assessment
Code Review
Coding Standards
Secure Development