Final answer:
You would bring in an outside contractor to perform a penetration test to get an objective assessment, benefit from specialized expertise, and ensure compliance with industry standards.
Step-by-step explanation:
You would bring in an outside contractor to perform a penetration test for several reasons. One of the main reasons is to achieve an objective assessment of the security posture of your IT infrastructure. External contractors are not biased by internal politics or company culture, and they bring a fresh perspective to identifying security vulnerabilities.
Another reason is the specialized expertise that professional penetration testers have. They often possess a more diverse and current set of skills and knowledge about the latest threats and hacking techniques compared to in-house staff.
Lastly, hiring an outside contractor helps in maintaining compliance with industry standards and regulations. They can provide a more rigorous testing process that meets the requirements of various compliance frameworks, and their reports can be used to demonstrate due diligence in maintaining an adequate security posture.