What else can you do besides a yearly penetration test?

The best advice; Vulnerability Scans

Many organizations see a penetration test as the best way to uncover threat surface but that isn’t always the one size fits all solution. Vulnerability scans (or vuln scan for short) are usually a series of automated scans against a database of known vulnerabilities. There are many types of scans (full, deep, fast, etc) but the goal is the same- scan and enumerate, list detected vulnerabilities across hosts, subnets, switching and routing devices and even printers.

Adding a vuln scan to your pen-test will provide a more wholistic picture and here’s 3 reasons why. 

  1. A vuln scan will show small misconfigurations across targets, applications and subnets that a penetration test report may not show.
  2. A vuln scan will allow you gain visibility into areas of risk within systems, possibly providing insight into failed controls or lack of processes in place.
  3. A vuln scan will allow you to remediate your penetration test findings quicker and more efficiently.