CISA Certified Information Systems Auditor – Question2668

Which of the following is the MOST critical step prior to performing a network penetration test?

A.
Informing management of the potential risk involved with penetration testing
B. Identifying a scanning tool for use in identifying vulnerabilities
C. Communicating the location of the penetration test targets to management
D. Reviewing the results of previous penetration tests

Correct Answer: A