Should you alert your SOC before a penetration test? In this episode, the Cyber Threat Perspective team dives into why notifying your SOC might not be in your best interest and what you can learn from a truly blind test.
- The role of the SOC/MDR provider in pen testing and who is ultimately the customer
- How bias and notifications can dilute the effectiveness of the test
- Why pen tests are the most powerful way to evaluate controls, including SOC visibility and gaps
- Contractual obligations and strategies for fulfilling notification requirements without compromising the test
- The real impact of pen tests—client expectations, MDR/SOC detection grades, and transformational improvements to your security environment
Get your 2025 External Pentest done before time runs out! https://www.securit360.com/external-penetration-testing-services-sa/
Blog:Â https://offsec.blog/
Youtube:Â https://www.youtube.com/@cyberthreatpov
Twitter:Â https://x.com/cyberthreatpov
Follow Spencer on social ⬇
Spencer’s Links:Â https://go.spenceralessi.com/links
Work with Us: https://securit360.com | Find vulnerabilities that matter, learn about how we do internal pentesting here.