For many startups, cybersecurity and penetration testing in particular are issues that need to be addressed because of the requests of their customers or investors.
Some startups have a security by design approach and processes that integrate security testing into the software development cycle. Other startups are less mature on the subject, as they do not have in-house security skills. They have questions when it becomes necessary to perform a first pentest.