Krebs – DHS Giving Firms Free Penetration Tests

I could spend a great deal of time discussing the pros and cons of this DHS program, but I won’t.  I will remain largely altruistic in my interpretation.  Penetration testing is good.  Exposing vulnerabilities is good.  Hopefully remediation is taking place and the private sector is becoming more aware and more secure.

OK, I lied.  Here is a little pessimism   Hopefully, these assessments are taking the place of strong internal processes and hopefully they are not being used as a rubber stamp to avoid other sound security practices.


Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s