Governance , Incident & Breach Response , Security Operations
Pen Testing: How Far Should You Let White Hat Hackers Go?
Attorney Kay Lam-MacLeod Discusses Defining the Goals
Penetration tests can reveal holes in an organization's security. But framing the scope of a penetration test can be challenging, and good results don't necessarily mean 100 percent security. says attorney Kay Lam-MacLeod.
See Also: Deception-Based Threat Detection: Shifting Power to the Defenders
In an interview at Information Security Media Group's recent Sydney Fraud and Breach Prevention Summit, Lam-MacLeod discusses:
- How to define the goals of a penetration test;
- What a penetration test can and can't reveal;
- What you should allow white hat hackers to do.
Lam-MacLeod is principal at Idealaw, a technology-focused law firm in Brisbane, Australia. She provides virtual in-house counsel support for IT companies, drafting website documentation, contract and policies. The firm also covers the law relating to e-commerce and intellectual property.
