Let the Data Speak: What 2 years of real pen testing findings will tell you

Here at Cobalt, we’ve done over 350 penetration tests to date. The information included in this report (Time to Fix, Vulnerability Types, Findings Criticality, Issues Fixed) is summary data from all of the penetration tests performed in 2017.

Additionally, we provide data (Portfolio Coverage, Pen Test Frequency) from 75 survey respondents in security, management, operations, DevOps, product, and developer roles.

Industry thought-leaders Caroline Wong and Mike Shema offer guidance on pen testing metrics that adds functional value for infosec practitioners.

Key takeaways:

  • Proven methods to track the effectiveness of your pen test activities
  • Recommended program and engagement level metrics
  • Valuable insights from top AppSec practitioners