I'm a penetration tester with more than 5 years of experience working for a well known big4, and now I'm starting my own company.
This being said, I need information about prices, so if you have performed a penetration testing for your company, could you please tell me what what was the duration of the pentest and how much did you pay?
Apart from that, since I'm just starting, I'm looking for a few clients to build my portfolio, so I will be offering a free web application 1 week penetration test for the first 5 people from HN that contact me.
https://www.linkedin.com/in/lautaro-morandi/
Beyond pricing have you thought about your differentiation, or what’s special about you? Are you able to do web applications, but i.e. intending to be focusing on industrial control systems, financial systems? Are you going to be comfortable auditing C# or Rust and identifying issues? Do you know a lot about Kubernetes?
Next thing I think is important to be able to answer: why award the business to you over Deloitte, or over a smaller shop with a good reputation like Cure53, Trail of Bits, TrustedSec, etc? Perhaps you’re a prolific speaker in the security community at Black Hat, Defcon, CCC, or something?
If you’re going to be a one-man band, does that rule out engagements large enough to require 5 people for a month? (Sometimes engagements are urgent and multiple people sure helps them go faster).
Good luck on the new venture.