Penetration Testing

23 NYCRR 500 requires that many Covered Entities conduct “annual penetration testing” as part of their Cybersecurity Program. Sounds boring, right? Actually, maybe less so than you think. Penetration testing is the process of testing to see if systems, applications and networks are well protected from hackers. In the world of cybersecurity, penetration testers (also…