Читать книгу CompTIA PenTest+ Certification For Dummies - Glen E. Clarke - Страница 21

You should also perform a penetration test after making any major changes to the network infrastructure or application environments, such as upgrades to software. Some examples of infrastructure changes could be adding a new server to the network, replacing a server with a new server, or adding a new network segment. These changes could introduce new ways for hackers to get into the network, so you want to make sure you perform a penetration test to verify all is secure.

In addition, any changes to the software configuration, such as a piece of software being upgraded, should result in a penetration test of that component so that you can verify there are no vulnerabilities in the new software.

For the PenTest+ certification exam, remember that a penetration test should be performed annually and after any major change to the infrastructure.