What is Penetration testing ?

Page 1

INFOSAVVY

What is Penetration testing ?

www.info-savvy.com


Topics

INFOSAVVY

What is Penetration Testing. Why Penetration Testing.

Comparing Security Audit, Vulnerability Assessment, and Penetration Testing. www.info-savvy.com


INFOSAVVY

www.info-savvy.com


What is Penetration Testing

INFOSAVVY

Penetration testing is a method of evaluating the security of an information system or network by simulating an attack to find out vulnerabilities that an attacker could exploit. Penetration test (or "pen-testing") exposes the gaps in the security model of an organization and helps organizations reach a balance between technical prowess and business functionality from the perspective of potential security breaches. www.info-savvy.com


INFOSAVVY

Why Penetration Testing www.info-savvy.com


Penetration testing is important to the organizations for the following reasons:

INFOSAVVY

• Identifying the threats facing an organization's information assets • Reducing an organization's expenditure on IT security and enhancing Return on Security Investment (R051) by identifying and re mediating vulnerabilities or weaknesses • Providing assurance with comprehensive assessment of organization's security including policy, procedure, design, and implementation

www.info-savvy.com


Comparing Security Audit Vulnerability Assessment & Penetration Testing www.info-savvy.com

INFOSAVVY


Security Audit

INFOSAVVY

A security audit just checks whether the organization is following a set of standard security policies and procedures. It is systematic method of technical assessment of an organization's system that includes conducting manual interviews with staff, performing security scans, reviewing security of various access controls, and analyzing physical access to the organizational resources. www.info-savvy.com


INFOSAVVY

Vulnerability Assessment A vulnerability assessment focuses on discovering the vulnerabilities in the information system but provides no indication if the vulnerabilities can be exploited or of the amount of damage that may result from the successful exploitation of the vulnerability. www.info-savvy.com


INFOSAVVY

Penetration Testing Penetration testing is a methodological approach to security assessment that encompasses the security audit and vulnerability assessment and demonstrates if the vulnerabilities in system can be successfully exploited by attackers. www.info-savvy.com


www.info-savvy.com

SOCIAL MEDIA ACCOUNTS

TWITTER https://twitter.com/Infosavvy_

INSTAGRAM https://www.instagram.com/infosavvy_/

FACEBOOK https://www.facebook.com/INF0SAVVY

INFOSAVVY


INFOSAVVY

THANK YOU! VISIT US SOON.

www.info-savvy.com


Turn static files into dynamic content formats.

Create a flipbook
Issuu converts static files into: digital portfolios, online yearbooks, online catalogs, digital photo albums and more. Sign up and create your flipbook.