How to keep your pentest team on top of their game

Ensuring that your team stays up-to-date is a hard problem. The security field is always evolving and new vulnerabilities and attacks get published every day.

To ensure that your team knows about all of the new techniques, you can use some of the following ideas:

• Organise weekly talks presented by members of the team. It can be on a recent attack they pulled up, a tool they tested, some issue they read about. You can also invite people from other companies!
• Organise internal Capture-The-Flag. Two or three people put together the challenges and the rest of the team plays.
• Get your team to play Capture-The-Flag. Make sure you check out https://ctftime.org for upcoming CTF. It’s definitely a good way to learn new thing and to improve team collaboration.
• Send weekly brain teaser, “how to” or “did you know” by email.
• Encourage sharing and working together. Member of a team learn so much more by working together. New technics, new ways to use a tool….
• Go to conferences and local meetups. This is also a great way to learn new things and meet new people to discuss ideas. A good way to motivate your team is to put the first round of drinks on the company card ;)

Finally, PentesterLab offers an enterprise version of its offering PentesterLab PRO. By providing new content on a regular basis, we ensure that your team stays on top of their game. And our enterprise account management makes it easy to follow your team’s progress. You can learn more here: https://pentesterlab.com/pro/enterprise