“If your goal is to find most or all of your issues so you can fix them, a penetration test simply doesn’t do that. Security assessment is actually what most companies need, yet they often ask for penetration testing. This is a problem because the terms are not interchangeable and they deliver different things” Ted Harrington – Executive partner at Independent Security Evaluators
Source: Synopsys
About Ted Harrington:
Leader of ethical hackers, helping companies build better, more secure software. Author, keynote speaker, consultant, and podcast host, specializing in penetration testing, secure software development, and related areas of cybersecurity.
Author of the book HACKABLE: How to Do Application Security Right, and Executive Partner at Independent Security Evaluators (ISE).
