Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

Re: "bonded and insured"

From: H D Moore <hdm () secureaustin com>
Date: Wed, 23 May 2001 19:20:44 -0500
All analysts at Digital Defense are bonded and insured for some insane amount 
of money.  The client needs to know that if you screw up and take down thier 
IT infrastructure, they will be compensated by some other method other than 
suing you.  If you want, I can try to find the name of the company that 
provides those services for us.

On Tuesday 22 May 2001 07:13 pm, Malf Easance wrote:

Hello Fellow Pentesters,
  I've submitted a proposal for a pentest and security audit
  Some of the feedback from the prospective customer has indicated that
  the High-Llamas in his company want their pen tester to be
  'bonded and insured'.
  Have any of you ever experienced this? How did you respond?
  Is there really a way to get bonded OR insured for pen-test consulting?
  I have CISSP and CISA certs.
  Thanks for your input
  Malf

____________________________________________________________________
Get free email and a permanent address at http://www.amexmail.com/?A=1
Previous By Date Next
Previous By Thread Next

Current thread: