Why do I have to sign a Vulnerability Assessment Authorisation Form?
Before performing a Vulnerability Assessment for your organisation, you will be asked to sign a Vulnerability Assessment Authorisation Form.
The main purpose of a Vulnerability Assessment Authorisation Form is to authorise our security engineers and business analysts to legally perform this work.
During the course of the Assessment we are likely to uncover security flaws residing in your IT infrastructure. The process of finding these and confirming that they are susceptible to attack can lead to technical or performance issues in your IT systems. In addition to this, the scope of the assessment is also defined and agreed, thus ensuring we are assessing only what you have agreed to. Hence, due to the sensitive nature of the information we will be discovering, and the possible consequences - it is important that you read and sign the Vulnerability Assessment Authorisation Form so that you are aware of the implications beforehand and are happy to go ahead with the assessment.
The form should also make you aware of the scope of the assessment, so that you know of which devices are to be inspected, and the date range within which we will be authorised to inspect them.