Ask the Expert

How can a Certified Ethical Hacker become a line penetration tester?

How can a Certified Ethical Hacker become a line penetration tester?

    Requires Free Membership to View

It's really just a matter of getting a job (or adding responsibility to your current job) as a penetration tester. The Certified Ethical Hacker certification provides a test to confirm whether you'd be able to perform a penetration test.

Where the Certified Ethical Hacker designation differs from most other security certifications is that it can be used both offensively and defensively. By training on the tools and the techniques the hacker uses, a Certified Ethical Hacker should be able to not only test an organization's defenses against those techniques, but also defend against attacks more effectively.

Of course, that is all theory. In practice, I've found that security professionals need to be able to think like a hacker. They need to look at their systems critically and figure out where the holes are. While it's not possible to eliminate all the holes, the most obvious issues can absolutely be resolved by using ethical hacking techniques and attack tools.

Suffice it to say, I'm a big fan of testing networks, systems and applications. For more information as to why I feel that way, check out a piece I recently wrote on my Security Incite blog about why enterprise penetration testing is important.

More information:

This was first published in June 2008

There are Comments. Add yours.

TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: