CompTIACompTIA
PT0-002 · Question #23
PT0-002 Question #23: Real Exam Question with Answer & Explanation
The correct answer is A: Clarify the statement of work.. Clarifying the statement of work is paramount before starting penetration testing to ensure all parties understand the scope, objectives, and deliverables of the engagement.
Planning and Scoping
Question
When preparing for an engagement with an enterprise organization, which of the following is one of the MOST important items to develop fully prior to beginning the penetration testing activities?
Options
- AClarify the statement of work.
- BObtain an asset inventory from the client.
- CInterview all stakeholders.
- DIdentify all third parties involved.
Explanation
Clarifying the statement of work is paramount before starting penetration testing to ensure all parties understand the scope, objectives, and deliverables of the engagement.
Common mistakes.
- B. Obtaining an asset inventory is part of the information gathering phase, which typically falls within the scope defined by the SOW, but clarifying the SOW itself precedes this operational step.
- C. Interviewing all stakeholders can provide valuable context but is often a detailed activity that follows the foundational agreement set by the SOW.
- D. Identifying all third parties involved might be relevant for scoping, but the SOW is the primary document that formalizes the agreed-upon boundaries and participants.
Concept tested. Penetration testing scope definition
Topics
#Statement of Work (SOW)#Pre-engagement#Scope Definition#Penetration Testing Engagement
Community Discussion
No community discussion yet for this question.