. https://www.sagedatasecurity.com/blog/whats-the-difference-between-a-penetration-test-and-a-vulnerability-assessment

home.aspx
   

article
SHARESHARESHARE
WHAT’S THE DIFFERENCE BETWEEN A PENETRATION TEST AND A VULNERABILITY ASSESSMENT?
In the world of cybersecurity, nothing is static. The cyber threat environment is dynamic and evolving. There are new vulnerabilities discovered on a daily basis. Attacks are getting more sophisticated – they’re getting more complex and flying under the radar of traditional detection technologies. Your organization’s environment isn’t static either. You introduce new network equipment, bring in new people, engage with new third-party vendors, etc., and security needs to be a consideration with every change made. That’s why cybersecurity has to be a managed process, where you are constantly evaluating, remediating, and tracking what’s working and what’s not. Regularly testing your environment from both an internal and external perspective should be an integral part of your evaluation process – including performing vulnerability assessments and penetration tests (pen test for short). Unfortunately, there is a misconception that these engagements are synonymous. It’s common to hear the terms used interchangeably, when in reality, they are very different engagements. It’s imperative that you understand the differences between them, so you can select which is most appropriate for your organization at any given time. Here are four distinctions to be aware of. READ MORE