External Infrastructure Penetration Test

Leave a review

SKU: 3184

Format: Penetration test

Mitigate the threat from opportunistic and targeted attacks with our advanced testing techniques.
Identify vulnerabilities within your public-facing infrastructure and act promptly with our prioritised action plan and remediation guidance.
Work with one of the leading penetration testing companies in the UK, offering one-to-one expert advice at any stage of the engagement.

For more information about this service or to get a tailored quote for your organisation, please enquire below and one of our experts will be in touch shortly.Enquire about this service

Overview

Address vulnerabilities within your public-facing infrastructure

This External Infrastructure Penetration Test contains a mix of advanced manual testing techniques and automated scans to simulate real-world attacks to identify risks within your business.

It will assess:

Configurations
Patching
Authentication
Passwords
Encryption
Information leakage

Download the full service description

Your comprehensive report will include:

At the end of the test, you will receive a comprehensive report broken down into:

Executive summary

High-level, non-technical summary of your business’ risks.

Testing details

Detailed description of the methodologies followed and the scope of testing.

Vulnerability findings

Overview, consultant’s commentary and detailed descriptions of each technical vulnerability identified and remediation advice.

Download the full service description

Methodology

This test follows IT Governance’s proprietary security testing methodology, which is closely aligned with the SANS, Open Source Security Testing Methodology Manual (OSSTMM) and Open Web Application Security Project (OWASP) methodologies.

Who is this service for?

This service is suitable for organisations that have publicly facing infrastructure such as remote access solutions, servers, networking equipment, etc.

The test covers up to 20 external IP addresses. IT Governance IP addresses will be required for whitelisting if an IPS (intrusion protection system) is enabled. For more than 20 IP addresses, contact us for a quote.

Benefits

Benefits of the External Infrastructure Penetration Test

Get real-world insight into your vulnerabilities

Identify and understand the technology-related vulnerabilities affecting your external infrastructure and the business impacts these present.

Demonstrate strength to key stakeholders

Demonstrate a strong security posture to clients by providing third-party assurances that your external infrastructure is secure.

Safeguard your organisation

From the detailed report, you will be able to implement secure measures (such as secure authentication and session management controls, and improved user access controls), thereby reducing the likelihood of a security breach while protecting your brand.

Supports best practice

Supports compliance with ISO 27001, the UK DPA (Data Protection Act) 2018 and the GDPR (General Data Protection Regulation), the PCI DSS (Payment Card Industry Data Security Standard), and other laws, regulations and contractual obligations.

Technical and non-technical descriptions

Our expert consultant will provide you with updates throughout the project from both technical and non-technical perspectives.

Finding vulnerabilities since 2010

Our established UK penetration testing team has amassed extensive testing experience that ensures clients receive a comprehensive service.

Why IT Governance?

Why choose IT Governance?

Our CREST-certified penetration testing team will provide you with clarity and technical expertise, as well as peace of mind knowing that your external infrastructure has been reviewed by experienced testers in line with your business requirements.
Get one-to-one expert advice at any stage of the engagement, along with an end-of-test debrief and answers to queries following the issue of the report.
Our detailed reports describe any identified business risks from both technical and non-technical perspectives.
Our established and experienced UK penetration testing team has been operational since 2010, amassing extensive testing experience that ensures clients receive a comprehensive service.

Customer Reviews

(5.00)

Number of reviews: 5

Please login to your account to leave a review.

1. Gordon on 24/04/2023, said:

I always find ITG easy to work with. The consultant involved was very professional and friendly, providing plenty of updates throughout the test and clearly explained his findings. The report provided plenty of information on any vulnerabilities found and the corrective actions needed to be taken.

2. Tim on 09/08/2022, said:

Good grief, what an eye-opener this was! We chose ITG because the initial scoping call revealed their pen testers had heard about our not-so-common software setup and their cost was more realistic than the other quotes. I cannot recommend ITG enough - the whole service from beginning to end was exceptional with Loreta organising everything to Ross performing the actual pen testing. We are an educational institution with a complex network setup and I thought I knew enough to get by with IT Security, but Ross has brought me down a peg (or seven) and we will be employing ITG's services regularly to make sure there is nothing I've missed in the future.

3. Tom on 11/11/2021, said:

It was a pleasure to work with the ITG team for this pen testing project - from clear guidance from the account manager through to regular updates from the testers themselves. Will use again

4. Eric on 08/03/2021, said:

Working with the ITG team is nice and straightforward. Account management and technical functions are good and thus far we've had no real issues.

5. Petro on 05/03/2021, said:

We always use ITG and this service consistently hits the mark for our clients in terms of expectation. Both Pen Team and Account Managers work with our clients in a professional manner.

Showing comments 1-5 of 5