Earlier this year, 3GRC welcomed Shaun Peapell as Threat Director to lead and build the threat team. The team has significantly expanded and as a result, we are pleased to add an additional offering, Penetration Testing as a Service, which complements our existing portfolio of threat services.
2018 has been a big year for data breaches and cyber-attacks with some of the biggest brands having made the headlines including Facebook, British Airways and Dixons Carphone.
An organisations risk landscape is constantly changing and therefore it is no longer sufficient to treat penetration testing as a one-off task. It is certainly being performed more frequently however the mechanism to deliver remediation results has largely stayed the same- a PDF report or Excel spreadsheet where the results are manually converted into actionable tasks. This takes time and more often than not, risks fail to be remediated in a timely manner, if at all.
Our PTaaS programme addresses this longstanding issue by treating penetration testing as a scheduled, tracked and continuous business strategy. PTaaS is the ongoing programme of testing, management and remediation of risks, replacing the outdated one-off approach to ensure that the chance of unwelcome surprises is minimised.
Our risk management Platform sits at the heart of our service, offering dynamic reporting, real-time updates, communication tools, remediation management workflows and mapping capabilities. This aims to reduce internal resources, drive remediation activity and most importantly, improve your organisations defence against attacks and breaches over time.