Software-as-a-service (SaaS) and other cloud-based offerings present great savings opportunities versus on-premise solutions. However, how do you test the security of these applications and what are the implications of performing a penetration test of these offerings?
Matt Wilgus and Josh Tomkiel from Schellman's Threat and Vulnerability Assessment team cover the ins and outs of performing a penetration test of cloud-based services.
Matt and Josh will cover penetration testing from the perspective of the provider and the customer highlighting everything from:
- Receiving authorizations and typical requests
- Planning and implementing testing scenarios
- Avoiding common pitfalls
- Delivering an efficient and complete test
- And the types of findings you can expect