Is penetration testing needed for enterprise deals?
A potential enterprise client is asking us to complete a penetration test before they’ll do business with us, and our CTO is also saying it’s something we should get. I’m curious how common this is. Is this the kind of thing that comes up a lot when selling into larger companies? We haven’t really run into it until now.
We also got quotes from two different vendors, but I’m not sure what the typical price range is or whether these are good deals. Our app is compelty vibe coded and pretty small , yet the quotes came in very differently. Rapid7(rapid7·com) gave us a quote of $40k, which seems really expensive, while StealthNet AI(stealthnet·ai) quoted us $6.5k, which feels a lot more reasonable. I’d love to hear what others have paid for pentests, whether this is something we should prioritize now, and whether it makes sense to get it done before continuing to push into enterprise sales.