Blogs & Stories

Trustwave Blog

The Trustwave Blog empowers information security professionals to achieve new heights through expert insight that addresses hot topics, trends and challenges and defines best practices.

Why Now Is the Right Time To Remote Pen Test

The COVID-19 pandemic continues to cause travel restrictions and has reshaped how businesses function, with many pushing large portions of their staff into a work-from-home environment. Still, these limitations do not mean an organization has to accept second-tier cybersecurity.

The Trustwave SpiderLabs team can deliver a first-class assessment of an organization's security posture via remote penetration testing. This technique delivers an equal outcome compared to an in-person test and is easily accomplished from our research facilities, thus avoiding all of the restrictions put in place due to COVID-19.

Being the Managing Consultant for Trustwave SpiderLabs in Singapore, I've worked with many clients ranging from small and medium enterprises to those counted in the APAC Fortune 100. Over the past few years, I've spent countless hours reviewing pen tests results with clients. Most importantly, I've learned a lot about the different things a client can do to maximize the value from a pen test, especially during this COVID period.

Quick Reference Guide: Penetration Testing

Quick Reference Guide: Penetration Testing

Get the guide to learn more from our experts about best practices for penetration testing:

Quick Reference Guide to Penetration Testing

Increasing adoption of remote Pen Test

When it comes to maintaining a strong organizational security posture, proactive testing should be top of mind. However, the travel restrictions caused by the COVID-19 pandemic have created significant ongoing challenges in assessing an organization's security posture, such as the ability to perform onsite penetration tests.

There is an answer to this problem, remote pen testing.

Trustwave SpiderLabs has been providing remote penetration testing for several years, even before COVID made travel difficult, and the process has been helping keep our clients secure.

Not only does remote pen testing enable Trustwave SpiderLabs to continue to help our clients during the pandemic, but we have found many customers welcome this service.

Save time and money

Conducting a thorough onsite pen test program does take time and this effort is reflected in the billing process. For example, with onsite testing, the customer is billed not only for the onsite activity but also for the time spent as the pen tester waits for the results to come through.​ However, with remote testing, the tester can move on to other projects, which will save you money as the scans on your business are completed over time. And then, there are the savings incurred because the security consultant does not have to travel and be on site.

Test flexibility

If your business operates from multiple locations, remote testing can be scheduled and take place simultaneously because the security consultant does not have to travel to each site.

And since remote tests can be delivered by Trustwave SpiderLabs' global team, there is additional scheduling flexibility built into the process so there is less chance of incurring a penalty due to rescheduling or the cancellation of a test.

Ease of testing and lowered risk

Remote testing also removes the need for Trustwave's workers to receive clearances from your organization, and it eliminates the threat of onsite risks to our staffers and your business. And since our workers are already in their workspace when the project begins, they have full access to the suite of resources needed to test your system.

Highly responsive testing when you need it

Our testers, when working remotely, can jump back into a project to conduct quick retests – for example, rechecking a specific finding –with low costs incurred.​

Security assurance

Trustwave SpiderLabs Security Testing is an industry-leading penetration testing team with a global and APJ regional team, 25 years of experience, with 100,000+ hours of tests delivered globally per year​. ​ Additionally, we are an international CREST certified organization for Penetration Testing and Simulated Target Attack & Response (STAR) Penetration Testing.

Our global CREST membership proves to clients that we are invested in training and ensure that our staff keeps up to date with the latest tools, tactics, and procedures.

Being a global organization with a worldwide reach, we're able to constantly give our customers the very best service to ensure that we meet your demands and that you can increase your cyber maturity through our cutting-edge penetration testing using modern attack-based simulations.