CompTIA PenTest+ (PT0-002) — Question 294

Which of the following documents should be consulted if a client has an issue accepting a penetration test report that was provided?

Answer options

• A. Rules of engagement
• B. Signed authorization letter
• C. Statement of work
• D. Non-disclosure agreement

Correct answer: C

Explanation

The Statement of Work (SOW) outlines the specifics of the project, including deliverables and expectations, which can clarify any confusion regarding the penetration test report. The Rules of Engagement, Signed Authorization Letter, and Non-Disclosure Agreement may provide context but do not specifically address the details related to the acceptance of the report.