!Latest cybersecurity news and updates. Contact us
Cagpemini
Cybersecurity Excellence
View general overview

Penetration Testing Shanghai

Offensive security audit - Penetration testing to identify vulnerabilities

1 weeksAdvancedRemote

In Shanghai, our cybersecurity training supports Shanghai businesses in their secure digital transformation. Organizations like SAIC Motor, China Eastern Airlines, ICBC trust our expertise to train their teams. Based in Zhangjiang Hi-Tech Park, we understand the specific challenges of the China market and adapt our programs to local realities.

Key Information

Duration1 weeks
ModeRemote
LevelAdvanced
LocationShanghai
Price5000-20000 EUR
Book a Demo

Prerequisites

No technical prerequisites on client side. Access to target systems (IP, URLs) and written testing authorization required. Clear scope definition and rules of engagement.

Target Audience

  • →Companies wanting to assess their security against cyberattacks
  • →CIOs and CISOs preparing compliance audits (PCI DSS, SOC 2)
  • →SaaS/Fintech startups with client security requirements
  • →Organizations after a security incident
  • →Companies before fundraising or acquisition

Expected Outcomes

Exhaustive identification of exploitable vulnerabilities

Detailed report with proof of exploitation (PoC)

Risk classification by criticality (CVSS)

Prioritized remediation recommendations

Free retest after fixes

Companies in Shanghai using this training

  • SAIC Motor - Awareness training for 500+ employees
  • China Eastern Airlines - Ongoing certification program
  • ICBC - Security audit and custom training
  • Zhangjiang Hi-Tech Park startups - Monthly group training sessions

Regulatory Compliance

MLPS (Multi-Level Protection Scheme), Cybersecurity Law of China, PIPL (Personal Information Protection Law), growing ISO 27001 adoption

FAQs

What is the difference between penetration testing and vulnerability scanning?
Vulnerability scanning is automated and identifies known flaws. Penetration testing goes further: our experts actively attempt to exploit vulnerabilities as a real attacker would, testing defenses in depth and attack chains.
How long does a penetration test take?
Duration varies by scope: 3-5 days for a web application, 5-10 days for an internal network, 2-3 weeks for a complete pentest (web + network + social engineering). We define the schedule together during scoping.
Can penetration testing disrupt our production systems?
We minimize risks with strict rules of engagement. Destructive tests (DoS) are excluded unless explicitly requested on test environments. We use non-intrusive techniques in production and notify immediately upon critical discovery.
What types of penetration tests do you offer?
We offer: Web pentest (OWASP Top 10), Network pentest (internal/external), Mobile pentest (iOS/Android), API pentest (REST/GraphQL), Red Team (advanced attack simulation), and Social Engineering (phishing, vishing). Each approach can be black box, gray box, or white box.

Ready to get started?

Next session in Shanghai

January 29, 2026

Book a DemoRequest a Quote

Pricing adapted to the Shanghai market. Inter-company and in-house training available. Custom quote within 24h.