Flank, a provider of information security policy templates, toolkits, compliance, consulting and certification services, has added penetration testing services to its portfolio.
- Black box.
- Grey box.
- Reconnaissance, intelligence and open source intelligence gathering.
- Social engineering.
- Website application.
- White box.
Flank charges a flat fee for its penetration testing services, according to the company. In addition, Flank provides a Penetration Testing Scoping Questionnaire to help Houston businesses identify the right penetration testing services based on their individual needs.
What Is Flank?
Flank is a division of Prosource Technologies, a Minnesota-based professional services firm. It offers the Flank21 security policy packet, which contains over 5,000 pages of information security policies, procedures, forms, checklists, templates, provisioning and hardening documents.
Also, Flank offers services across a variety of areas, such as:
- Critical infrastructure protection (CIP).
- General Data Protection Regulation (GDPR).
- ISO 2700.
- National Institute of Standards and Technology (NIST).
The aforementioned services also include compliance documentation, professional consulting and auditing capabilities, according to Flank. They help organizations simultaneously safeguard their critical assets against cyber threats and comply with various industry regulations.
How Can MSSPs Add Penetration Testing to Their Portfolios?
Penetration testing enables an organization to evaluate its IT infrastructure and identify misconfigurations, service errors and unsafe end user behaviors that could lead to data breaches. As such, penetration testing is becoming exceedingly valuable to organizations around the world, and MSSPs and managed service providers (MSPs) are now better equipped than ever before to add penetration testing services to their portfolios.
Master MSP Collabrance last month integrated vulnerability and penetration (VUL/PEN) testing into its master MSSP offering for partners. MSSPs and MSPs can use Collabrance's master MSSP offering to run VUL/PEN tests to assess customer risks and establish appropriate security measures.
Furthermore, UK-based MSP Claranet in July purchased NotSoSecure, an ethical hacking training and penetration testing company, for an undisclosed sum. Claranet now offers NotSoSecure ethical hacking training and penetration testing services to its customers.