After a major vulnerability assessment is complete, and the business feels it has remediated enough findings to improve its security posture, it's critical to perform penetration testing with the right scope to verify that your remediation are correct: