Threat-led penetration testing is now a standard requirement. Budgets are approved, tests are run, reports are filed. Yet many organisations still finish six-figure exercises with a familiar outcome: confirmation of issues they already suspected, limited learning, and little change in how attackers are actually stopped.
In this practitioner-led session, Maarten Bras, TIBER readiness advisor, CTI expert Peter Higgins, and Red Team leader Antonio Spadaro unpack the silent failures that undermine TLPT in the real world. They will show how distorted scoping, generic threat intel, price-driven provider selection and staged realism can all strip value from tests that were meant to be game changers.
The focus? What attackers are really doing to financial entities right now, and how that maps to common blind spots like cloud migration, identity and social engineering. You will see how pre-TLPT programmes can be used to sharpen detection and response, raise your baseline before the official test, and turn your next TLPT into an opportunity for capability growth instead of a compliance stress test.
If you are facing your first TIBER or DORA TLPT, or have already run several and feel you are not learning enough, this masterclass will help you rethink how you prepare, run and follow up on threat-led testing so the next round actually moves the needle.
