Skip to Main Content
United Kingdom
Select regional store:
Limited time offer! Get free access to 8 e-learning courses when you purchase any training course – hurry, offer ends 31 October!
Infrastructure (Network) Penetration Test

Infrastructure (Network) Penetration Test

SKU: 3184
Format: Year 1
Format: Year 2 per annum/test (save 5%)
Format: Year 3 per annum/test (save 10%)

Identify your network’s critical vulnerabilities before cyber criminals do.

IT Governance’s external network penetration test provides a complete solution for effectively testing your IT network infrastructure and making sure your organisation is genuinely secure against cyber threats.

The test can help meet the requirements of the PCI DSS (Payment Card Industry Data Security Standard) and ISO 27001.

Purchase this service or call our team today on +44 (0)333 800 7000 to discuss your penetration testing requirements.

Buy now, pay later! Enjoy the benefits of paying by purchase order with an IT Governance corporate account. Apply online today or call our service centre team on +44 (0)333 800 7000.

Price: £2,250.00
ex vat


IT Governance’s infrastructure penetration test aims to identify vulnerabilities that could be used to breach your network. Your system will be reviewed for vulnerabilities (including those detailed within the OSSTMM (Open Source Security Testing Methodology Manual)) to identify any weaknesses that could allow an attacker to compromise the network, the data stored on it or the devices hosted on it.

The identified vulnerabilities are presented in a format that allows you to assess your organisation’s relative business risk and the cost of remediation.

Your challenge

External infrastructure-related vulnerabilities tend to arise from poor hardware configurations, ineffective system configuration parameters and weak security system controls. 

Exploiting a vulnerability allows an attacker to gain control in a privileged state and access resources on the network. 


Our penetration tests will help you:

  • Gain real-world insight into your vulnerabilities;
  • Identify any patches that need to be installed;
  • Reconfigure software, firewalls and operating systems; and
  • Identify needs for encryption or more secure protocols.

Our service offering

  • A review of the testing environment to assess your network and identify information that would be useful to a criminal hacker. 
  • A range of manual tests using a methodology closely aligned with the OSSTM. 
  • A series of automated vulnerability scans. 
  • Immediate notification of any critical vulnerabilities to help you act quickly. 
  • A detailed report that identifies and explains the vulnerabilities (ranked in order of significance). 
  • A list of recommended countermeasures to address any identified vulnerabilities. 
  • An executive summary that explains what the risks mean in business terms. 


  • The price is applicable for 20 externally facing IP addresses.
  • Consultant expenses related to travelling, etc. are not included in the price.
  • On-site presentation of report findings and remedial consultations can be provided upon request at an additional cost.
  • Discounts for multiple tests only apply when a two- or three-year contract is agreed at the purchase of the first test; discounts cannot be backdated. Each penetration test will be invoiced annually (in the year of the test). An invoice will be issued 28 days before the planned test.

Require a level 2 penetration test?

We’ve designed our standard packages to be easy and affordable, but if you are unsure of your requirements, or your needs are more complex and involve attempting to exploit the identified vulnerabilities, please call us to discuss. Our consultants can answer your questions and make the process painless. If you would like to talk to one of our testers or meet with them, we would be happy to arrange this.

Contact us

Why choose us?

  • Penetration tests should only be carried out by experienced consultants with the necessary technical skill set and qualifications. Our consultants have strong technical knowledge and a proven track record in finding security vulnerabilities. They carry out testing in a safe manner and advise on appropriate mitigation measures to ensure your systems are secure.
  • Our CREST-certified penetration testing team will provide you with clarity, technical expertise and peace of mind.
  • For Azure clients, our penetration tests comply with the Microsoft Rules of Engagement . This means we take care to limit all penetration tests to your assets, thereby avoiding unintended consequences to your customers or your infrastructure.

Customer Reviews

This website uses cookies. View our cookie policy
Free e-learning