How can a Certified Ethical Hacker become a line penetration tester?

BROWSE BY TAG Expert Archive: Security Management,   Information Security Jobs and Training,   Information Security Careers, Training and Certifications,   VIEW ALL TAGS

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Expert Archive: Security Management What is the GISP certification and how does it compare to the CISSP certification? Using a QSA to write up a PCI DSS report on compliance (ROC) How can gap analysis be applied to the security SDLC? Comparing cheap security products and appliances to costly appliances What are some tips on protecting my security budget in a poor economy? What value do research firms provide to their subscribing enterprises? What certificate offers the best ROI for an IT project manager? Is insider activity or outsider activity a bigger enterprise threat? How does information security prevent fraud in the enterprise? Differences between an SAS 70 data center and a Tier III data center Information Security Jobs and Training Despite recession, information security certification pay continues to climb Bruce Schneier on outsourcing, awareness training Creating a personal brand in information security Feds push cybersecurity jobs, PCI DSS changes ahead. Feds announce 1,000 new security jobs Some IT security certifications are overvalued, analyst says How to prepare for an information security job interview Security industry remains resilient to tough economy Top social networking sites to boost your information security career Q2 2009 data shows IT security certification pay still climbing

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary Cisco Certified Security Professional (CCSP)  (SearchSecurity.com) CSO  (SearchSecurity.com) security clearance  (SearchSecurity.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary

It's really just a matter of getting a job (or adding responsibility to your current job) as a penetration tester. The Certified Ethical Hacker certification provides a test to confirm whether you'd be able to perform a penetration test.

Where the Certified Ethical Hacker designation differs from most other security certifications is that it can be used both offensively and defensively. By training on the tools and the techniques the hacker uses, a Certified Ethical Hacker should be able to not only test an organization's defenses against those techniques, but also defend against attacks more effectively.

Of course, that is all theory. In practice, I've found that security professionals need to be able to think like a hacker. They need to look at their systems critically and figure out where the holes are. While it's not possible to eliminate all the holes, the most obvious issues can absolutely be resolved by using ethical hacking techniques and attack tools.

Suffice it to say, I'm a big fan of testing networks, systems and applications. For more information as to why I feel that way, check out a piece I recently wrote on my Security Incite blog about why enterprise penetration testing is important.

More information:

• Learn more about how to develop a career in penetration testing.
• Are security certifications worth the trouble? Read more.