During a penetration test, establishing a primary contact person with the client organization is not necessary if the penetration tester has been granted authorization to test the systems.
This statement is false. Even with authorization, having a primary contact person is vital for ensuring that there is a clear line of communication throughout the engagement. This person is responsible for receiving updates, providing information, and making decisions if needed. Lacking a primary point of contact could lead to information silos, inefficient communication, and potential escalation of issues that could have been addressed with proper communication channels.