What challenges does your organization face with your penetration testing program?

Hiring enough skilled personnel to do the testing (internal)29%

Getting others to act on the findings46%

Getting executive sponsorship and funding for the program15%

Getting qualified 3rd parties to do the testing9%

Other (please comment below)0%


2.3k views1 Comment

Associate Vice President, Information Technology & CISO in Education, 1,001 - 5,000 employees
We use Synack for crowdsourced red team / penetration testing activities on a continuous basis (365x7x24)... So keeping up with remediating the findings is sometimes the biggest challenge.

Content you might like

CTO in Software, 201 - 500 employees
Without a doubt - Technical Debt! It's a ball and chain that creates an ever increasing drag on any organization, stifles innovation, and prevents transformation.
Read More Comments
40.8k views131 Upvotes319 Comments

Patch management: to reduce attack surface and avoid system misconfigurations39%

Malware and ransomware prevention: to protect endpoints from social engineering attacks58%

Malware and fileless malware detection and response: to protect against malicious software49%

Threat Hunting: to detect unknown threats that are acting or dormant in your environment and have bypassed the security controls33%

Not planning to change endpoint security strategy10%



Yes — always.37%

No, I don't mind sharing my data48%

Not yet, but I might opt out soon9%

Don’t know — I need to check!4%