.webp?width=2169&height=526&name=Compass%20regular%20transparent%20website%20(1).webp "Compass IT Compliance Logo")
-1.webp?width=2169&height=620&name=Compass%20regular%20transparent%20website%20smaller%20(1)-1.webp "Compass IT Compliance")
Is Your Internal Pen Test Just a Glorified Vulnerability Scan?
by Jesse Roberts on May 14, 2025 at 12:04 PM
Organizations today face an increasing number of internal threats—whether from malicious insiders, compromised credentials, or vulnerable systems exposed on the internal network. That’s why internal penetration testing has become a critical part of any mature cybersecurity program. Bu …
The Value of Penetration Testing in SOC 2 Audits
by Jerry Hughes on October 18, 2024 at 10:00 AM
Where data breaches and cyber threats have become increasingly common, organizations adopt robust security measures to protect their sensitive information. For businesses seeking SOC 2 compliance, penetration testing (pen testing) serves as an invaluable tool in assessing and enhancin …
Internal vs External Penetration Testing: What's The Difference?
by Peter Fellini on September 27, 2024 at 10:15 AM
A penetration test, also known as a pen test, is a controlled, simulated cyberattack designed to uncover vulnerabilities that could be exploited in an organization's security. These tests can be carried out either internally or externally. Understanding the difference between internal …
Penetration Testing Phases: Steps in the Process
by Jesse Roberts on September 6, 2024 at 1:00 PM
As cyber threats continue to grow in complexity and frequency, the need for regular penetration testing has become more critical than ever for organizations aiming to safeguard their sensitive data and systems. A well-executed penetration test follows a structured process designed to …
Penetration Testing: Black Box vs. White Box vs. Gray Box
by Danielle Corsa on August 13, 2024 at 1:15 PM
Penetration testing, or pen testing, is a critical practice for assessing and fortifying the security of networks, software, and services. Various types of pen testing, including black box, white box, and gray box testing, each offer distinct perspectives and insights. These diverse m …
What Is Ethical Hacking? A Comprehensive Guide
by Jake Dwares on April 2, 2024 at 1:45 PM
In today’s world, the pervasive threat of cyberattacks has illuminated a stark reality: no computer system is entirely immune to intrusion. This challenge has paradoxically ushered in the role of ethical hackers — cybersecurity professionals who employ their skills to fortify defenses …