A penetration testing company is about to engage with a new client. Which of the following should the penetration testers ensure is in place before initiating any security assessment activities?
Confirmation of tool restrictions
Completion of a risk assessment report
Approval of the time of engagement
A signed non-disclosure agreement (NDA)