Educause Security Discussion mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Pentest Agreement

From: Samuel Gaudet <samuel.gaudet () MAINE EDU>
Date: Wed, 9 Jan 2013 14:24:35 -0500
Ed Skoudis has a good boilerplate memo he shares with his students
that is designed to protect employees in a situation similar to yours:

http://www.counterhack.net/permission_memo.html

Hope this helps,
Sam

On Wed, Jan 9, 2013 at 2:21 PM, Adam Vedra <avedra () calvin edu> wrote:

Would any one be willing to share an example of an internal pentest
agreement/permission document between an employer and an information
security employee, ideally one that is used in your own organization? So far
the examples I have turned up are more or less contracts between an
organization and an outside third party.

Thank you for your help and input!

Adam



Adam P. Vedra, CISSP, GSEC
Information Security Officer
Calvin College





-- 
Sam Gaudet
Systems Security Analyst
University of Maine System
Office: (207) 973-3297
Previous By Date Next
Previous By Thread Next

Current thread: