Amazon Consulting Corporation provides penetration testing and managed security services
to companies. Legality and regulatory compliance is one of the important components in
conducting a successful security audit. Before starting a test, one of the agreements both the
parties need to sign relates to limitations, constraints, liabilities, code of conduct, and
indemnification considerations between the parties.
Which agreement requires a signature from both the parties (the penetration tester and the company)?
A.
Non-disclosure agreement
B.
Client fees agreement
C.
Rules of engagement agreement
D.
Confidentiality agreement