task 3

Penetration Test Proposal

Deliverable 1: Rules of Engagement

Name:

Course Number and Section:

Instructor:

Date:

Rules of Engagement

Overview

In a penetration test project, the Pen Test engineers save lots of documents that is actually recorded at the time of actual system attacks and during them.

I will identify the characteristics, expectations and other relevant information by consulting with the company and taking help from online and physical resources.

Scope

Scheduling and scope will be set after careful consideration of views and opinions given by the officials and employees of the company because they are the people who know the internal workings of the company and they are putting in hard work for it. Stakeholders will be given special attention and considered a priority because business is either done by them or for them.

Checklist

A binding agreement can be formed between two parties by a written promise or contract or the exchange of a valuable item. I will use a written document to establish a binding agreement between Centralia Security Lab and Haverbrook Investment Group. All the terms and conditions proposed by both the parties will be listed and agreed upon with the signatures of the officials related to the ROE.

The services and expectations will be easy to identify ones it is clear what one party is offering and what the other party is receiving. Simple communication will help in the identification process. Targets and other logistics will be set after crafting a milestone schedule that will elaborate when a task is to be performed and till what time or deadline.

Ethical Considerations

A practical implementation will be shown to Haverbrook that will ensure that all the data on their server is fully protected and will not go into the wrong hands while the penetration tests. The books of standard rules will also be provided so they can see for themselves that all the practices are in compliance will the laws and regulations. It will also be ensured that in case anything goes wrong as far as data and confidential information is concerned, our company will be responsible and fix any errors that might show themselves during the process.

References

Rouse, M. (2018, October 31). What is pen test (penetration testing)? - Definition from WhatIs.com. Retrieved February 20, 2020, from https://searchsecurity.techtarget.com/definition/penetration-testing

What is Penetration Testing: Step-By-Step Process & Methods: Imperva. (n.d.). Retrieved February 20, 2020, from https://www.imperva.com/learn/application-security/penetration-testing/