How do they match: Penetration Testers

  • Network Security Engineer
  • Network Security Tester
  • Information Security Analyst
  • Vulnerability Analyst
  • Vulnerability Assessment Analyst

  • Evaluate network system security by conducting simulated internal and external cyberattacks using adversary tools and techniques. Attempt to breach and exploit critical systems and gain access to sensitive information to assess system security.

  • Assess the physical security of servers, systems, or network devices to identify vulnerability to temperature, vandalism, or natural disasters.
  • Collect stakeholder data to evaluate risk and to develop mitigation strategies.
  • Conduct network and security system audits, using established criteria.
  • Develop and execute tests that simulate the techniques of known cyber threat actors.
  • Develop security penetration testing processes, such as wireless, data networks, and telecommunication security tests.
  • Evaluate vulnerability assessments of local computing environments, networks, infrastructures, or enclave boundaries.
  • Identify new threat tactics, techniques, or procedures used by cyber threat actors.
  • Investigate security incidents, using computer forensics, network forensics, root cause analysis, or malware analysis.
  • Maintain up-to-date knowledge of hacking trends.
  • Test the security of systems by attempting to gain access to networks, Web-based applications, or computers.
  • Write audit reports to communicate technical and procedural findings and recommend solutions.

  • Analyze security of systems, network, or data.
  • Discuss design or technical features of products or services with technical personnel.
  • Examine records or other types of data to investigate criminal activities.
  • Prepare technical or operational reports.
  • Prepare scientific or technical reports or presentations.
  • Search files, databases or reference materials to obtain needed information.