Penetration tests have long been an essential part of many organisation’s strategy to protect themselves from cyber attack. But the use of penetration testing alone can often leave such organisations defenceless for long periods of time.

Performing annual penetration tests as a primary defence against attackers gained popularity in years gone by, for good reasons, and is still common in the cyber security industry today. And while this strategy is certainly better than doing nothing, it does have a fairly critical drawback — what happens between tests?

This topic is a little long for a quick help article, and as such, further discussion and the rest of the article can be found on our blog here