Penetration Testers

Does this career fit your work personality?

Begin The Career Assessment Test
?
FIT Score
Discover your work personality strengths.
This is a Premium Feature X Find your
  • Best Fitting Careers
  • Work Personality Strengths
  • Work Style Preferences
  • and more
Begin Career Test
Related Careers:
Information Security Engineers
Information Security Analysts
Software Quality Assurance Analysts and Testers
Software Developers
Computer Systems Engineers/Architects
Computer Systems Analysts
Blockchain Engineers
Validation Engineers
Computer Network Support Specialists
Database Administrators
Security Management Specialists
Security Managers
Computer Network Architects
Network and Computer Systems Administrators
Quality Control Analysts
Security and Fire Alarm Systems Installers
Health and Safety Engineers, Except Mining Safe...
Computer Hardware Engineers
Mechanical Engineering Technologists and Techni...
Aerospace Engineering and Operations Technologi...
Job Outlook:
None
Education: Bachelor's degree
Salary
High: $166,780.00
Average: $104,660.00
Hourly
Average: $50.32

Summary of What they do:

Evaluate network system security by conducting simulated internal and external cyberattacks using adversary tools and techniques. Attempt to breach and exploit critical systems and gain access to sensitive information to assess system security.

Responsibilities
  • Evaluate characteristics of equipment or systems.
  • Analyze risks to minimize losses or damages.
  • Analyze security of systems, network, or data.
  • Develop computer or information systems.
  • Develop computer or information security policies or procedures.
  • Test performance of electrical, electronic, mechanical, or integrated systems or equipment.
  • Develop testing routines or procedures.
  • Develop testing routines or procedures.
  • Prepare scientific or technical reports or presentations.
  • Develop testing routines or procedures.
  • Discuss design or technical features of products or services with technical personnel.
  • Prepare technical or operational reports.
  • Interpret design or operational test results.
  • Search files, databases or reference materials to obtain needed information.
  • Investigate illegal or suspicious activities.
  • Analyze security of systems, network, or data.
  • Examine records or other types of data to investigate criminal activities.
  • Stay informed about current developments in field of specialization.
  • Stay informed about current developments in field of specialization.
  • Prepare scientific or technical reports or presentations.
  • Test computer system operations to ensure proper functioning.
  • Develop organizational policies or programs.
  • Prepare analytical reports.

    • Tasks On The Job

    1. Assess the physical security of servers, systems, or network devices to identify vulnerability to temperature, vandalism, or natural disasters.
    2. Collect stakeholder data to evaluate risk and to develop mitigation strategies.
    3. Conduct network and security system audits, using established criteria.
    4. Configure information systems to incorporate principles of least functionality and least access.
    5. Design security solutions to address known device vulnerabilities.
    6. Develop and execute tests that simulate the techniques of known cyber threat actors.
    7. Develop infiltration tests that exploit device vulnerabilities.
    8. Develop presentations on threat intelligence.
    9. Develop security penetration testing processes, such as wireless, data networks, and telecommunication security tests.
    10. Discuss security solutions with information technology teams or management.
    11. Document penetration test findings.
    12. Evaluate vulnerability assessments of local computing environments, networks, infrastructures, or enclave boundaries.
    13. Gather cyber intelligence to identify vulnerabilities.
    14. Identify new threat tactics, techniques, or procedures used by cyber threat actors.
    15. Identify security system weaknesses, using penetration tests.
    16. Investigate security incidents, using computer forensics, network forensics, root cause analysis, or malware analysis.
    17. Keep up with new penetration testing tools and methods.
    18. Maintain up-to-date knowledge of hacking trends.
    19. Prepare and submit reports describing the results of security fixes.
    20. Test the security of systems by attempting to gain access to networks, Web-based applications, or computers.
    21. Update corporate policies to improve cyber security.
    22. Write audit reports to communicate technical and procedural findings and recommend solutions.

    Information provided by CareerFitter, LLC and other sources.

    Sections of this page includes information from the O*NET 27.3 Database by the U.S. Department of Labor, Employment and Training Administration (USDOL/ETA). Used under the CC BY 4.0 license.

    CareerFitter, LLC has modified all or some of this information. USDOL/ETA has not approved, endorsed, or tested these modifications.