Leadership was concerned that an actual motivated threat actor would be able to easily breach the organization’s systems, leading to both tangible as well as intangible negative business impact. At the same time, there was concern about balancing security and the user experience. In addition, there was intense pressure on the security team since it was the second time the same findings were discovered during a penetration test.
A large company contracted TrustedSec to perform a penetration test to evaluate the security of network infrastructure. Upon review of the technical report findings, the client partnered with TrustedSec again to develop the framework required to successfully implement the desired Identity and Access Management (IAM) process and further mature their Information Security program.