by sidekicksecurity | Mar 22, 2025 | offensive security
The industry has been doing penetration tests (or pentests for short) for years now. It started as a bespoke, specialized activity to something that many organizations do on an annual basis at least. Couple that with the deluge of more continuous or ongoing security...
by sidekicksecurity | Oct 10, 2024 | security program leadership
The main mission of cybersecurity is not cybersecurity. I’ll say it again. The main mission of cybersecurity is not cybersecurity. I know that might sound somewhat counterintuitive, and maybe even a bit controversial for some, but come with me along this path and I’ll...
by sidekicksecurity | Oct 1, 2024 | security program leadership, third party risk management
No one likes security questionnaires. Companies hate them so much that they often have a boilerplate version they send to every vendor regardless of use cases and type of service provided. Vendors hate them so much that they spend hours complaining about them and...
