A Vulnerability scan looks for known vulnerabilities in your systems and reports potential exposures, often forming part of information gathering for a penetration test. Penetration tests are intended to exploit weaknesses in the architecture of your IT networks, systems, and applications. They determine the degree to which a malicious attacker can gain unauthorised access to your assets. A vulnerability scan is typically automated, while a penetration test is a manual test performed by a security professional. Both elements are important, typically vulnerability scans are done on a more frequent basis and penetration tests on a less frequent basis