CompTIA PenTest+ (PT0-001) — Question 55

For which of the following reasons does a penetration tester need to have a customer's point-of-contact information available at all times? (Choose three.)

Answer options

• A. To report indicators of compromise
• B. To report findings that cannot be exploited
• C. To report critical findings
• D. To report the latest published exploits
• E. To update payment information
• F. To report a server that becomes unresponsive
• G. To update the statement of work
• H. To report a cracked password

Correct answer: A, C, F

Explanation

The correct answers, A, C, and F, are crucial for a penetration tester to maintain communication about security threats and operational issues. Reporting indicators of compromise and critical findings directly impacts the security posture of the organization, while notifying about an unresponsive server is vital for immediate troubleshooting. The other options do not pertain to urgent security matters or the primary responsibilities of a penetration tester.