251111 - Penetration Testing Specialist
Conducts authorized attempts to penetrate computer systems and applications, networks and physical facilities using realistic threat methods to assess their security status and discover potential vulnerabilities
Main Tasks:
Conduct authorized penetration testing of systems, applications and networks
Mimic malicious social engineering techniques used by attackers to attempt a system breach to discover security gaps and vulnerabilities
Report penetration testing and vulnerability assessment findings including threat level, proposed mitigation and details necessary to reproduce the test results.
Carry out vulnerability scanning on systems and networks
Assess the cybersecurity posture of systems and networks and provide recommendations for improvements
Educational Level:
Educational Field:
Software and applications development and analysis
Database and network design and administration
Skills:
Effective communication with individuals and leaders
Technical skills:
Knowledge of penetration testing and red teaming principles, tools and techniques.
Knowledge of how to mimic the attacks a social engineer would use to attempt a system breach.
Knowledge of ethical hacking, encryption or password cracking tools and remote access methods.
Skill in using penetration testing tools and techniques.
Skill in conducting vulnerability scans to systems and networks and identifying cybersecurity vulnerabilities.