{"id":4928,"date":"2022-06-06T14:00:41","date_gmt":"2022-06-06T18:00:41","guid":{"rendered":"https:\/\/solutionsreview.com\/endpoint-security\/?p=4928"},"modified":"2022-06-06T14:00:56","modified_gmt":"2022-06-06T18:00:56","slug":"what-should-the-future-of-penetration-testing-look-like","status":"publish","type":"post","link":"https:\/\/solutionsreview.com\/endpoint-security\/what-should-the-future-of-penetration-testing-look-like\/","title":{"rendered":"What Should the Future of Penetration Testing Look Like?"},"content":{"rendered":"

\"Future<\/p>\n

As part of Solutions Review’s Premium Content Series\u2014a collection of contributed columns written by industry experts in maturing software categories\u2014Eric Fredrickson, the Head of Attack Engineering at Horizon3.ai<\/a>, shares insights on how the future of penetration testing can better support a company’s enterprise security efforts.<\/span><\/strong><\/em><\/p>\n

<\/span><\/p>\n

I’ve spent years of my career as a pentester (penetration tester), which is a role where I helped organizations identify security vulnerabilities by exploiting them in a safe environment. I enjoyed the work, too.<\/span> For one, it’s fun being on the offense, as I was tasked with finding a way to exploit a network while defenders tried to protect everything. My clients had good defensive teams, too, so when I did find and exploit weaknesses, I was competing against some of the best.\u00a0<\/span><\/p>\n

The trouble with traditional pentests is that they’re manual, time-consuming processes. Here’s a simple outline for some of the steps involved in staging and launching a penetration test:<\/p>\n

    \n
  1. Prepare the testing environment by\u00a0bringing together relevant technical contacts the tester may need to communicate with. <\/span><\/li>\n
  2. Inform key IT personnel of the plan to ensure they know the company isn’t facing an actual attack when the test starts. <\/span><\/li>\n
  3. Teams must define the scope of the test and ensure the tester has appropriate permissions to conduct the tests.<\/span><\/li>\n
  4. Since pentests sometimes cause issues in the IT environment, you need IT personnel to be on standby. <\/span><\/li>\n<\/ol>\n

    Overall, organizations should plan on one to two weeks of prep time leading up to the test. <\/span><\/p>\n

    The time it takes to complete the test itself will depend on the organization. If a pentester has ample time, they <\/span>can cover a more significant portion of the IT environment and spend time on more sophisticated attacks. A complete pentest could last two to three weeks, plus another week for writing up results and recommendations. <\/span>So, we now have a four-to-six-week lead time for completing a pentest for just a portion<\/em> of an organization’s environment, assuming the vendor has availability. If you want a follow-up pentest to validate remediation of findings, the clock has to start again.<\/span>\u00a0<\/span><\/p>\n

    But it’s not just time that affects these tests\u2014they also require money. Skilled pentesters are in high demand and charge a lot for their services. The single pentest described above could easily cost $15,000 to $50,000 (for a portion of the target IT environment). Few organizations have sufficient budget to scale pentests across their entire environment or at the frequency required to ensure networks remain secure as new systems, users, and applications are updated or added.<\/span>\u00a0<\/span><\/p>\n

    All this leads to organizations using pentests sparingly, usually a few times each year. Unfortunately, with the threat landscape evolving at its current pace, a network that’s secure today could open the door to attackers tomorrow due to stolen credentials, poorly executed software updates, misconfigurations, or newly disclosed vulnerabilities. Waiting three to six months between pentests can leave an organization vulnerable to simple attacks.<\/span>\u00a0<\/span><\/p>\n

    Speaking as a (former) pentester, things need to change. Here are some of the things the pentesting field needs to improve.<\/span><\/p>\n

    Faster Cycles<\/span><\/b>\u00a0<\/span><\/h3>\n

    Organizations cannot afford to leave their environments at risk for months at a time. More frequent pentests won’t eliminate the risk of breaches, but they would improve network security.<\/span> According to the NIST Cyber Security Framework (CSF), organizations should verify through systematic audit and assessment to ensure they have fixed vulnerabilities after updating systems or deploying patches. Unfortunately, even the most prominent organizations cannot afford to hire enough staff or consultants to perform daily or weekly manual pentests. <\/span>\u00a0<\/span><\/p>\n

    This means we need “on-demand” pentests that do not require weeks of preparation. For example, organizations should be able to pentest after each software update, even when vulnerability scanners and patch management systems show that security updates have been successful.<\/span>\u00a0<\/span><\/p>\n

    Lower Costs (Without Sacrificing Quality)<\/span><\/b><\/h3>\n

    Traditional pentests are expensive. By some estimates, organizations worldwide spent <\/span>$1.6 billion<\/span><\/a> on pentests in 2021 and could reach over $3 billion in several years. Most organizations cannot afford to execute traditional pentests as frequently as needed.<\/span>\u00a0<\/span><\/p>\n

    High-quality pentests need to be within the means of all organizations. For that to be possible, the cost<\/span> needs to be reduced by a factor of 10 or more<\/em> to allow companies to conduct pentests when they need them, not when they can afford them.<\/span>\u00a0<\/span><\/p>\n

    Autonomous Pentests<\/span><\/b>\u00a0<\/span><\/h3>\n

    Manual pentests require highly skilled professionals, and the shortage of cybersecurity talent at all levels is large and growing. Worldwide there are between <\/span>3.5 million<\/span><\/a> and <\/span>4 million<\/span><\/a> unfilled cybersecurity jobs. It is unlikely to get better soon, as help from universities <\/span>is not on the way<\/span><\/a>.\u00a0<\/span>So, what do we do? One solution is to <\/span>remove the human bottleneck for most pentests. They should be “self-service” and available at the click of a mouse, so IT and security professionals can execute one when they need it, not when they can schedule one.<\/span>\u00a0<\/span><\/p>\n

    This means real pentests can provide the same results as skilled professionals, not “point and click” one-day pentests performed by interns using canned scripts. These need to simulate real-world attack techniques and chain together exploitable vulnerabilities, misconfigurations, harvested credentials, and dangerous product defaults that exploit a network.<\/span>\u00a0<\/span><\/p>\n

    High Frequency, Low Cost, Autonomous Pentests<\/span><\/b>\u00a0<\/span><\/h3>\n

    It is a lot to ask, but autonomous, on-demand pentests can change how organizations defend against a growing threat landscape, making it possible to execute tests weekly instead of several times each year. This will reduce the time organizations are vulnerable to new attack patterns, verify their existing security controls, and ensure that patches to systems solve the intended weaknesses without introducing new ones.<\/span>\u00a0<\/span><\/p>\n

    There will always be a need for the skills of professional pentesters, though. Smart humans still add value, and critical systems and high-threat environments warrant manual testing. In those situations, however, automated, autonomous pentesting can help reconnaissance and cover a more significant portion of the system under testing. More importantly, autonomous pentesting brings pentesting and greater security to the masses.<\/span><\/p>\n

    \n

    \t\t\t

    \"Download<\/a><\/p>\n<\/div>\n\t\t<\/div><\/div><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"

    As part of Solutions Review’s Premium Content Series\u2014a collection of contributed columns written by industry experts in maturing software categories\u2014Eric Fredrickson, the Head of Attack Engineering at Horizon3.ai, shares insights on how the future of penetration testing can better support a company’s enterprise security efforts. I’ve spent years of my career as a pentester (penetration […]<\/p>\n","protected":false},"author":188,"featured_media":4930,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[2],"tags":[1614,75,233,1612,1613,1443,1611,1610,1596,1249],"acf":[],"yoast_head":"\nWhat Should the Future of Penetration Testing Look Like?<\/title>\n<meta name=\"description\" content=\"As part of Solutions Review's Premium Content Series, Eric Fredrickson of Horizon3.ai shares insights on the future of penetration testing.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/solutionsreview.com\/endpoint-security\/what-should-the-future-of-penetration-testing-look-like\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"What Should the Future of Penetration Testing Look Like?\" \/>\n<meta property=\"og:description\" content=\"As part of Solutions Review's Premium Content Series, Eric Fredrickson of Horizon3.ai shares insights on the future of penetration testing.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/solutionsreview.com\/endpoint-security\/what-should-the-future-of-penetration-testing-look-like\/\" \/>\n<meta property=\"og:site_name\" content=\"Best Endpoint Protection Security (EPP) Tools, Software, Solutions & Vendors\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/solutionsreview\" \/>\n<meta property=\"article:published_time\" content=\"2022-06-06T18:00:41+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2022-06-06T18:00:56+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/solutionsreview.com\/endpoint-security\/files\/2022\/06\/Future-of-Penetration-Testing.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"800\" \/>\n\t<meta property=\"og:image:height\" content=\"400\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Eric Fredrickson\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@InfoSec_Review\" \/>\n<meta name=\"twitter:site\" content=\"@InfoSec_Review\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Eric Fredrickson\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/what-should-the-future-of-penetration-testing-look-like\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/what-should-the-future-of-penetration-testing-look-like\/\"},\"author\":{\"name\":\"Eric Fredrickson\",\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/#\/schema\/person\/e63a9204d0a2fef3547e8d235d6bbe63\"},\"headline\":\"What Should the Future of Penetration Testing Look Like?\",\"datePublished\":\"2022-06-06T18:00:41+00:00\",\"dateModified\":\"2022-06-06T18:00:56+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/what-should-the-future-of-penetration-testing-look-like\/\"},\"wordCount\":1006,\"publisher\":{\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/#organization\"},\"image\":{\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/what-should-the-future-of-penetration-testing-look-like\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/solutionsreview.com\/endpoint-security\/files\/2022\/06\/Future-of-Penetration-Testing.jpg\",\"keywords\":[\"Autonomous Pentests\",\"Cybersecurity\",\"Enterprise Security\",\"Eric Fredrickson\",\"Horizon3.ai\",\"Penetration Testing\",\"Pentester\",\"Pentesting\",\"Premium Content Series\",\"Threat Landscape\"],\"articleSection\":[\"Best Practices\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/what-should-the-future-of-penetration-testing-look-like\/\",\"url\":\"https:\/\/solutionsreview.com\/endpoint-security\/what-should-the-future-of-penetration-testing-look-like\/\",\"name\":\"What Should the Future of Penetration Testing Look Like?\",\"isPartOf\":{\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/what-should-the-future-of-penetration-testing-look-like\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/what-should-the-future-of-penetration-testing-look-like\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/solutionsreview.com\/endpoint-security\/files\/2022\/06\/Future-of-Penetration-Testing.jpg\",\"datePublished\":\"2022-06-06T18:00:41+00:00\",\"dateModified\":\"2022-06-06T18:00:56+00:00\",\"description\":\"As part of Solutions Review's Premium Content Series, Eric Fredrickson of Horizon3.ai shares insights on the future of penetration testing.\",\"breadcrumb\":{\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/what-should-the-future-of-penetration-testing-look-like\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/solutionsreview.com\/endpoint-security\/what-should-the-future-of-penetration-testing-look-like\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/what-should-the-future-of-penetration-testing-look-like\/#primaryimage\",\"url\":\"https:\/\/solutionsreview.com\/endpoint-security\/files\/2022\/06\/Future-of-Penetration-Testing.jpg\",\"contentUrl\":\"https:\/\/solutionsreview.com\/endpoint-security\/files\/2022\/06\/Future-of-Penetration-Testing.jpg\",\"width\":800,\"height\":400,\"caption\":\"Future of Penetration Testing\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/what-should-the-future-of-penetration-testing-look-like\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/solutionsreview.com\/endpoint-security\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"What Should the Future of Penetration Testing Look Like?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/#website\",\"url\":\"https:\/\/solutionsreview.com\/endpoint-security\/\",\"name\":\"Best Endpoint Protection Security (EPP) Tools, Software, Solutions & Vendors\",\"description\":\"All the Latest News, Best Practices and Buyer's Guides for Endpoint Security and Protection\",\"publisher\":{\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/solutionsreview.com\/endpoint-security\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/#organization\",\"name\":\"Solutions Review\",\"url\":\"https:\/\/solutionsreview.com\/endpoint-security\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/solutionsreview.com\/endpoint-security\/files\/2016\/05\/SR_Icon.png\",\"contentUrl\":\"https:\/\/solutionsreview.com\/endpoint-security\/files\/2016\/05\/SR_Icon.png\",\"width\":200,\"height\":200,\"caption\":\"Solutions Review\"},\"image\":{\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/solutionsreview\",\"https:\/\/x.com\/InfoSec_Review\",\"https:\/\/www.linkedin.com\/company\/cyber-security-solutions-review\",\"https:\/\/www.youtube.com\/user\/SolutionsReview\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/#\/schema\/person\/e63a9204d0a2fef3547e8d235d6bbe63\",\"name\":\"Eric Fredrickson\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/80ca3d3a0df3245ee1ecf5a74d3f07da?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/80ca3d3a0df3245ee1ecf5a74d3f07da?s=96&d=mm&r=g\",\"caption\":\"Eric Fredrickson\"},\"description\":\"Eric Fredrickson is Head of Attack Engineering at Horizon3.ai and is an expert in\u202fnetwork operations, including network design and implementation, threat mitigation, and network defense. He was previously the Cyber Security Lead for the U.S. Joint Communications Unit, a \u202fUnited States Special Operations Command\u202ftechnical unit charged with standardizing and ensuring the interoperability of communication procedures and equipment of the\u202fJoint Special Operations Command\u202fand its subordinate units. He has also served as a Senior Cyber Specialist, Cyber Risk Services, Deloitte.\",\"sameAs\":[\"https:\/\/www.horizon3.ai\/\"],\"url\":\"https:\/\/solutionsreview.com\/endpoint-security\/author\/efredrickson\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"What Should the Future of Penetration Testing Look Like?","description":"As part of Solutions Review's Premium Content Series, Eric Fredrickson of Horizon3.ai shares insights on the future of penetration testing.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/solutionsreview.com\/endpoint-security\/what-should-the-future-of-penetration-testing-look-like\/","og_locale":"en_US","og_type":"article","og_title":"What Should the Future of Penetration Testing Look Like?","og_description":"As part of Solutions Review's Premium Content Series, Eric Fredrickson of Horizon3.ai shares insights on the future of penetration testing.","og_url":"https:\/\/solutionsreview.com\/endpoint-security\/what-should-the-future-of-penetration-testing-look-like\/","og_site_name":"Best Endpoint Protection Security (EPP) Tools, Software, Solutions & Vendors","article_publisher":"https:\/\/www.facebook.com\/solutionsreview","article_published_time":"2022-06-06T18:00:41+00:00","article_modified_time":"2022-06-06T18:00:56+00:00","og_image":[{"width":800,"height":400,"url":"https:\/\/solutionsreview.com\/endpoint-security\/files\/2022\/06\/Future-of-Penetration-Testing.jpg","type":"image\/jpeg"}],"author":"Eric Fredrickson","twitter_card":"summary_large_image","twitter_creator":"@InfoSec_Review","twitter_site":"@InfoSec_Review","twitter_misc":{"Written by":"Eric Fredrickson","Est. reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/solutionsreview.com\/endpoint-security\/what-should-the-future-of-penetration-testing-look-like\/#article","isPartOf":{"@id":"https:\/\/solutionsreview.com\/endpoint-security\/what-should-the-future-of-penetration-testing-look-like\/"},"author":{"name":"Eric Fredrickson","@id":"https:\/\/solutionsreview.com\/endpoint-security\/#\/schema\/person\/e63a9204d0a2fef3547e8d235d6bbe63"},"headline":"What Should the Future of Penetration Testing Look Like?","datePublished":"2022-06-06T18:00:41+00:00","dateModified":"2022-06-06T18:00:56+00:00","mainEntityOfPage":{"@id":"https:\/\/solutionsreview.com\/endpoint-security\/what-should-the-future-of-penetration-testing-look-like\/"},"wordCount":1006,"publisher":{"@id":"https:\/\/solutionsreview.com\/endpoint-security\/#organization"},"image":{"@id":"https:\/\/solutionsreview.com\/endpoint-security\/what-should-the-future-of-penetration-testing-look-like\/#primaryimage"},"thumbnailUrl":"https:\/\/solutionsreview.com\/endpoint-security\/files\/2022\/06\/Future-of-Penetration-Testing.jpg","keywords":["Autonomous Pentests","Cybersecurity","Enterprise Security","Eric Fredrickson","Horizon3.ai","Penetration Testing","Pentester","Pentesting","Premium Content Series","Threat Landscape"],"articleSection":["Best Practices"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/solutionsreview.com\/endpoint-security\/what-should-the-future-of-penetration-testing-look-like\/","url":"https:\/\/solutionsreview.com\/endpoint-security\/what-should-the-future-of-penetration-testing-look-like\/","name":"What Should the Future of Penetration Testing Look Like?","isPartOf":{"@id":"https:\/\/solutionsreview.com\/endpoint-security\/#website"},"primaryImageOfPage":{"@id":"https:\/\/solutionsreview.com\/endpoint-security\/what-should-the-future-of-penetration-testing-look-like\/#primaryimage"},"image":{"@id":"https:\/\/solutionsreview.com\/endpoint-security\/what-should-the-future-of-penetration-testing-look-like\/#primaryimage"},"thumbnailUrl":"https:\/\/solutionsreview.com\/endpoint-security\/files\/2022\/06\/Future-of-Penetration-Testing.jpg","datePublished":"2022-06-06T18:00:41+00:00","dateModified":"2022-06-06T18:00:56+00:00","description":"As part of Solutions Review's Premium Content Series, Eric Fredrickson of Horizon3.ai shares insights on the future of penetration testing.","breadcrumb":{"@id":"https:\/\/solutionsreview.com\/endpoint-security\/what-should-the-future-of-penetration-testing-look-like\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/solutionsreview.com\/endpoint-security\/what-should-the-future-of-penetration-testing-look-like\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/endpoint-security\/what-should-the-future-of-penetration-testing-look-like\/#primaryimage","url":"https:\/\/solutionsreview.com\/endpoint-security\/files\/2022\/06\/Future-of-Penetration-Testing.jpg","contentUrl":"https:\/\/solutionsreview.com\/endpoint-security\/files\/2022\/06\/Future-of-Penetration-Testing.jpg","width":800,"height":400,"caption":"Future of Penetration Testing"},{"@type":"BreadcrumbList","@id":"https:\/\/solutionsreview.com\/endpoint-security\/what-should-the-future-of-penetration-testing-look-like\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/solutionsreview.com\/endpoint-security\/"},{"@type":"ListItem","position":2,"name":"What Should the Future of Penetration Testing Look Like?"}]},{"@type":"WebSite","@id":"https:\/\/solutionsreview.com\/endpoint-security\/#website","url":"https:\/\/solutionsreview.com\/endpoint-security\/","name":"Best Endpoint Protection Security (EPP) Tools, Software, Solutions & Vendors","description":"All the Latest News, Best Practices and Buyer's Guides for Endpoint Security and Protection","publisher":{"@id":"https:\/\/solutionsreview.com\/endpoint-security\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/solutionsreview.com\/endpoint-security\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/solutionsreview.com\/endpoint-security\/#organization","name":"Solutions Review","url":"https:\/\/solutionsreview.com\/endpoint-security\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/endpoint-security\/#\/schema\/logo\/image\/","url":"https:\/\/solutionsreview.com\/endpoint-security\/files\/2016\/05\/SR_Icon.png","contentUrl":"https:\/\/solutionsreview.com\/endpoint-security\/files\/2016\/05\/SR_Icon.png","width":200,"height":200,"caption":"Solutions Review"},"image":{"@id":"https:\/\/solutionsreview.com\/endpoint-security\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/solutionsreview","https:\/\/x.com\/InfoSec_Review","https:\/\/www.linkedin.com\/company\/cyber-security-solutions-review","https:\/\/www.youtube.com\/user\/SolutionsReview"]},{"@type":"Person","@id":"https:\/\/solutionsreview.com\/endpoint-security\/#\/schema\/person\/e63a9204d0a2fef3547e8d235d6bbe63","name":"Eric Fredrickson","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/endpoint-security\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/80ca3d3a0df3245ee1ecf5a74d3f07da?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/80ca3d3a0df3245ee1ecf5a74d3f07da?s=96&d=mm&r=g","caption":"Eric Fredrickson"},"description":"Eric Fredrickson is Head of Attack Engineering at Horizon3.ai and is an expert in\u202fnetwork operations, including network design and implementation, threat mitigation, and network defense. He was previously the Cyber Security Lead for the U.S. Joint Communications Unit, a \u202fUnited States Special Operations Command\u202ftechnical unit charged with standardizing and ensuring the interoperability of communication procedures and equipment of the\u202fJoint Special Operations Command\u202fand its subordinate units. He has also served as a Senior Cyber Specialist, Cyber Risk Services, Deloitte.","sameAs":["https:\/\/www.horizon3.ai\/"],"url":"https:\/\/solutionsreview.com\/endpoint-security\/author\/efredrickson\/"}]}},"_links":{"self":[{"href":"https:\/\/solutionsreview.com\/endpoint-security\/wp-json\/wp\/v2\/posts\/4928"}],"collection":[{"href":"https:\/\/solutionsreview.com\/endpoint-security\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/solutionsreview.com\/endpoint-security\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/endpoint-security\/wp-json\/wp\/v2\/users\/188"}],"replies":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/endpoint-security\/wp-json\/wp\/v2\/comments?post=4928"}],"version-history":[{"count":0,"href":"https:\/\/solutionsreview.com\/endpoint-security\/wp-json\/wp\/v2\/posts\/4928\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/endpoint-security\/wp-json\/wp\/v2\/media\/4930"}],"wp:attachment":[{"href":"https:\/\/solutionsreview.com\/endpoint-security\/wp-json\/wp\/v2\/media?parent=4928"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/solutionsreview.com\/endpoint-security\/wp-json\/wp\/v2\/categories?post=4928"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/solutionsreview.com\/endpoint-security\/wp-json\/wp\/v2\/tags?post=4928"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}