Saturday, October 9, 2010

Need of Security Testing

There are a number of myths that companies use to discredit the need for Security
testing.
Myth 1 - "We don't need a Security Policy. We're only a small business."
Myth 2 - "There's no ROI (Return of Investment) in Security Testing."
Myth 3 - "The only way to totally secure the network is to unplug it!"
Myth 4 - "We know you can get in if you try to trick our people. What we want is a real test of what a hacker or a script-kiddie would do."
Myth 5 - "The Internet isn't safe! We must immediately purchase this new hyped up product to save our business!"

It is actually required because:
Security test helps in finding out loopholes that can cause loss of important information and allow any intruder enter into the systems. Security Testing helps in improving the current system and also helps in ensuring that the system will work for longer time (or it will work without hassles for the estimated time).

Security Testing doesn't only include conformance of resistance of the systems your organization uses, it also ensures that people in your organization understand and obey security policies. Hence adding up to the organization-wide security.

If involved right from the first phase of system development life cycle, security testing can help in eliminating the flaws into design and implementation of the system and in turn help the organization in blocking the potential security loopholes in the earlier stage. This is beneficial to the organization almost in all aspects (financially, security and even efforts point of view).

Who need Security Testing?
Almost all organizations across the world are equipped with hundreds of computers connected to each other through intranets and various types of LANs inside the organization itself and through Internet with the outer world and are also equipped with data storage & handling devices. The information that is stored in these storage devices and the applications that run on the computers are highly important to the organization from the business, security and survival point of view.
Any organization small or big in size, need to secure the information it possesses and the applications it uses in order to protect its customer's information safe and suppress any possible loss of its business.

Security testing ensures that the systems and applications used by the organizations are secure and not vulnerable to any type of attack.

No comments:

Post a Comment

 

©2010 Software Testing powered by Free Blogger Templates | Author : Anand Satish