Hitachi

U.S.A.

Hitachi Group Global Network

Americas

Asia

Europe

Middle East and Africa

Oceania

Close

Penetration Testing Pricing
You are here: Home \ Professional Services \ Penetration Testing Services \ Penetration Testing Pricing

Penetration Testing Pricing

Pentesting Cost

The cost of a penetration test depends on the scope of the project and the environment that needs to be tested. If the environment is large and complex, it can take weeks to detect and exploit vulnerabilities.

Pentest pricing also relies on whether it is an external or internal pentest, a web application penetration test, a wireless penetration test or social engineering conducted remotely or onsite. The qualifications of the dedicated pentest team (project managers, QSA, Certified Ethical Hackers etc.) for the project may also impact the price.

Read more about Hitachi Systems Security’s pentest methodology, deliverables and team skills here.

Pentest Rates

Our pricing model for internal and external pentests is based on the number of IPs that you’d like to test.

For other types of pentesting, please get in touch with us directly to get a custom quote.

External Pentest

Up to 5 IPs

External Pentest
$1,750

– Kickoff Meeting
– Intelligence Gathering
– Threat Modeling
– Vulnerability Scan
– Vulnerability Validation
– Traffic Review
– Exploitation
– Post Exploitation
– Detailed Report with Executive Summary, Findings and Recommendations
– Dedicated Project Manager

Up to 25 IPs

External Pentest
$5,000

– Kickoff Meeting
– Intelligence Gathering
– Threat Modeling
– Vulnerability Scan
– Vulnerability Validation
– Traffic Review
– Exploitation
– Post Exploitation
– Detailed Report with Executive Summary, Findings and Recommendations
– Dedicated Project Manager

Up to 100 IPs

External Pentest
$9,750

– Kickoff Meeting
– Intelligence Gathering
– Threat Modeling
– Vulnerability Scan
– Vulnerability Validation
– Traffic Review
– Exploitation
– Post Exploitation
– Detailed Report with Executive Summary, Findings and Recommendations
– Dedicated Project Manager

More IPs or other pentest types (application, wireless, mobile pentests and social engineering)

Contact us to scope your needs and get a custom quote.

Prices vary between $2,500 – $16,000.

Internal Pentest

Up to 5 IPs

Internal Pentest
$2,500

– Kickoff Meeting
– Intelligence Gathering
– Threat Modeling
– Vulnerability Scan
– Vulnerability Validation
– Traffic Review
– Exploitation
– Post Exploitation
– Detailed Report with Executive Summary, Findings and Recommendations
– Dedicated Project Manager

Up to 25 IPs

Internal Pentest
$5,700

– Kickoff Meeting
– Intelligence Gathering
– Threat Modeling
– Vulnerability Scan
– Vulnerability Validation
– Traffic Review
– Exploitation
– Post Exploitation
– Detailed Report with Executive Summary, Findings and Recommendations
– Dedicated Project Manager

Up to 100 IPs

Internal Pentest
$12,250

– Kickoff Meeting
– Intelligence Gathering
– Threat Modeling
– Vulnerability Scan
– Vulnerability Validation
– Traffic Review
– Exploitation
– Post Exploitation
– Detailed Report with Executive Summary, Findings and Recommendations
– Dedicated Project Manager

More IPs or other pentest types (application, wireless, mobile pentests and social engineering)

Contact us to scope your needs and get a custom quote.

Prices vary between $2,500 – $16,000.

Pentest Scoping

Here are some questions you need to think about when preparing your company for a pentest:

  • Why do we need to conduct a pentest? For compliance, following an audit, after an incident?
  • What kind of pentest do we need? A black, grey or white box penetration test?
  • How long and how often will we need to complete this test?
  • What are we expecting the key findings and takeaways to be?

It is important to understand the various types of pentests so that your organization can determine what will best suit your needs. A white box assessment can be a standard in the industry, but maybe your organization is trying to emulate a hacker or a disgruntled employee and is therefore better suited for a black or grey box assessment.

It’s also imperative to understand your business requirements, such as compliance regulations or new application launches. This will help determine when and how often to conduct a pentest.

Note that companies and people are often misinformed or misguided as to what the differences are between a penetration test and a vulnerability assessment. A vulnerability assessment, or VA, is the process of identifying threats and vulnerabilities on a target by using automated vulnerability scanners. For a VA, the scope of the engagement is limited to scanning and enumeration without exploitation.

Pentesting 101 – What to Know Before Conducting a Pentest

Need a pentest? Contact us to get a quote:



Talk to a security specialist

Protect your business today