How much does a penetration test (pentest) cost?

Please note there is a large difference between a vulnerability scan and a penetration test.  Relatively cheap vulnerability scans are automated software processes.  Automated one size fits all processes can only do so much.  Penetration tests are done manually by skilled professionals who can adapt to your specific requirements and look into every part of your network and systems.

A professional pentest for a small to medium size business would typically cost between $10,000 to $30,000. Larger more complex businesses with multiple facilities an exceed $100,000

The actual price of a quality pentest depends on many variables including how complex the network and systems are, the number of locations and the scope of the pen test.  

These and other variables are determined after an initial consultation. After which a quote for services that suits your environment will be provided.

Many would think these prices to be completely unreasonable and outrageous.  Consider this, a hacker only needs one hole to get into your network and steal private and personal data. Leaving you liable for the data breach.

A quality and complete pentest takes time to find as many holes as possible that could allow you to be compromised.  A thorough pentest could take as little as a week and up to several weeks to complete. Once again, depending on the complexity and scope of the work that needs to be done.

You are paying a professional to manually look through all the nooks and crannies of your business to determine what’s exploitable.

So while the price may seem high the actual cost for what you get is actually quite low.