Security Rules: Rules of Engagement

Prior to performing any penetration testing it is important to outline the Rules of Engagement (RoE) with the client. Begin this 14-video course with a general overview of the RoE how it relates to business and the potential consequences of not having the RoE in place. Look at benefits of having an easy reference checklist prepared when defining RoE. Learn how to determine the appropriate scope of engagement; examine client (IT staff) considerations; and view common risks and limitations such as impact on systems. Explore the logistics and considerations such as testing tools personnel and test schedules. Delve into incident handling and best practices; testing and best practices and also best practices in information handling. Examine elements that should be included in final reports such as action taken problems and findings. Look at liabilities warranty limitation of a liability and indemnification considerations to include when outlining the intent of testing activities. Finally learn how to ensure proper authorization has been granted to commence any testing.