Penetration Testing

I recently had the pleasure of assembling + moderating an industry panel of leading experts to discuss the often polarizing topic of Penetration Testing.

For the uninitiated, here’s how Wikipedia defines it:

A penetration test, colloquially known as a pen test, is an authorized simulated attack on a computer system, performed to evaluate the security of the system. The test is performed to identify both weaknesses (also referred to as vulnerabilities), including the potential for unauthorized parties to gain access to the system’s features and data, as well as strengths, enabling a full risk assessment to be completed.

Gratefully, some excellent members of the Information Security Community made time + presence to contribute. Heaps of gratitude to Dawid Balut, Mattia Campagnano, Kimber Dowsett (aka mzbat), Chris Roberts (aka sidragon1) + Georgia Weidman.

This world-class group shares their thoughts on the state of Cyber Security, changing the word “security” to “safety” or, better still, “business survival”, why the whole Red vs. Blue team construct has to die + more, all while making the case for shaping the industry into one that can empower people, in friendlier + more accessible ways to protect themselves, their businesses, organizations + the ones they care about the most.

Have a listen: