"What does a standard test look like?"
Once the scope is agreed, we will schedule the engagement in our calendar. We'll advise you on what you need to do to prepare for the engagement ensuring there no delays. This may include creating test environments or test accounts.
This is when we actually perform the penetration test or other engagement. We can do this either on site or remote, depending on your needs and how we access the environment. During testing we'll look for vulnerabilities and inform you immediately if we find anything critical.
When testing is complete we'll start creating the report. This is where we highlight any vulnerabilities discovered with recommendations on how to mitigate the risk. Reports are an important part of good penetration test so we take pride in the reports we create. For other engagements, we'll discuss reporting needs with you in advance as this may be dependent on requirements.
You need time to fix any vulnerabilities we might discover. All our testing includes a free retest for all off site assessments. After a retest, we will issue an updated report highlighting which vulnerabilities have been fixed.
After we send you the report, we'll send over an invoice for our services. We believe that security should be accessible and affordable to all companies so we price our services at a rate specifically for SMEs and startups.