What is the FIRST step that should be considered in a penetration test?
A.
The approval of change control management.
B.
The development of a detailed test plan.
C.
The formulation of specific management objectives.
D.
The communication process among team members.
Explanation:
The type of penetration test depends on the organization, its security objectives, and the
management’s goals. – Shon Harris All-in-one CISSP Certification Guide pg 838
The quote from Harris says it only ‘depends on’. Does not say it is the first step..