Boston, April 29, 2020 – Penetration testing is a widely accepted industry practice to complement vulnerability scanning and evaluate the effectiveness of cyber defenses. But penetration testing is labor-intensive and dependent on highly qualified cyber professionals—and expensive. Fortunately, a new breed of tools—breach and attack emulation—is emerging that can automate penetration testing processes and increase testing cycles at significantly reduced cost.

This Impact Brief describes the differences between breach and attack simulation and BAE, and includes an example of how an organization is using a BAE product to lower its cyber risk. It is based on Aite Group’s telephone and in-person conversations with 15 security professionals, conducted from mid-December 2019 to mid-March 2020, as well as an extended interview with a cyber defense manager at a large financial services company that is using a new BAE tool to reduce the company’s overall cyber risk.

Clients of Aite Group’s Cybersecurity service can download this 10-page Impact Brief. To learn more about the topic covered in this Impact Brief, please contact us at [email protected].

This report mentions Pcysys.