The importance of ethical conduct by penetration testers in the age of breach disclosure laws

Research output: Contribution to journalArticlepeer-review

Abstract

Across the globe, there has been a noticeable increase in the adoption of breach disclosure laws that are designed to protect the privacy of individuals. To validate the security controls implemented by an organisation to protect sensitive data, penetration testers are often engaged to test the security of information systems and to report any vulnerabilities. Using an interpretivist, constructivist approach, this article reports on a pilot study that compares USA and Australian approaches to ethical hacking. The need for regulation of ethical hacking to help protect organisations from unethical conduct was a recurring theme. With the changes in privacy regulations across the world, unauthorised disclosure of personal and privileged information could result in significant consequences. This paper explores the importance of ethical conduct by penetration testers based on empirical research and the potential for misuse of information
Original languageEnglish
Pages (from-to)1-14
Number of pages14
JournalAustralian Journal of Information Systems
Volume23
DOIs
Publication statusPublished - 06 May 2019

Fingerprint Dive into the research topics of 'The importance of ethical conduct by penetration testers in the age of breach disclosure laws'. Together they form a unique fingerprint.

Cite this