Penetration Testing Activities and Deliverables

Penetration Testing Activities and Deliverables

Question

Which of the following documents describes specific activities, deliverables, and schedules for a penetration tester?

Answers

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D.

C.

The document that describes specific activities, deliverables, and schedules for a penetration tester is called the SOW (Statement of Work).

A Statement of Work (SOW) is a document that outlines the expectations and responsibilities of both parties in a business agreement. It details what work will be done, how it will be done, and when it will be completed. A penetration tester may use an SOW to define the scope of the project and clarify expectations with the client.

The SOW includes the scope of work, the objectives of the project, the deliverables that will be provided, the timeline, and any specific requirements or constraints. The SOW is a crucial document for a penetration tester as it ensures that both the client and the tester have a clear understanding of the project's goals, deliverables, and timelines.

The other options listed in the question are also important documents, but they do not specifically describe the activities, deliverables, and schedules of a penetration tester.

An NDA (Non-Disclosure Agreement) is a legal agreement that outlines confidentiality requirements for sensitive information that may be shared during a business relationship.

An MSA (Master Service Agreement) is a contract that outlines the general terms and conditions that will govern future transactions or agreements between parties.

In summary, the document that describes specific activities, deliverables, and schedules for a penetration tester is the SOW (Statement of Work).