With about eight thousand vulnerabilities being discovered in commercial software annually, can you really afford to wait twelve months between penetration tests? While most vulnerabilities will not affect your organisation’s infrastructure, even if one percent impact your environment, you could be exposed to twenty a quarter or almost seven per month on average.
Our managed monthly scanning is designed to complement full penetration testing, once this CREST level of detailed testing has established the impact of exploiting a vulnerability and breaching your defences.
Our Monthly Managed Service is designed to follow on after the full penetration test has established the impact, and will check that the underlying vulnerabilities have been mitigated. It would also provide a check every month that the issue has not returned after a period of absence; this for example may be caused by a server that has had to be restored from backup and not subsequently patched.
The Managed Scanning Service is an ongoing check to ensure that the keys to your critical assets have not been left on display for attackers to steal, which can occur by accident as other infrastructure changes are carried out. A recent example of a successful outcome of this approach was the discovery of data records that were exposed publicly. This was not a problem during the penetration test, but only occurred after a later firewall upgrade. The security scanning service discovered this issue, which was quickly resolved before the exposure was able to be exploited by a malicious party.
Find out how our managed network vulnerability assessment can help you increase your ongoing security.