Penetration Tester

Penetration Testers asses security measures and provide recommendations for improvement.

When they complete penetration tests or vulnerability assessments, this helps to identify, quantify, and prioritise vulnerabilities in an organisation’s digital assets.

They ensure that an organisation understands where their security posture might be lacking, so it can determine its risk appetite and take steps to remediate as needed.

These are the key technical skills that may be required by penetration testers:

• Python, Bash, and PowerShell scripting
• Linux & Windows operating systems
• Networking & cloud platforms
• Coding language Python, Ruby, C & Java
• Threat modelling
• Mobile operating systems (iOS & Android)
• Software engineering security
• Reverse engineering
• Malware analysis investigation
• Open-source intelligence (OSINT)

Here are some of the key personal and interpersonal skills that may be required for this role: 

• Critical thinking
• Analytical problem solving
• Constant curious mindset
• Collaboration & communication
• Research and analysis
• Creative thinkers
• Report writing

A penetration tester might also be known as a: 

• Vulnerability analyst
• Ethical hacker
• Security consultant
• Assurance validator

QA is a leading provider of cyber security training, offering expert-led training for cyber security professionals, including penetration testers. 

We offer leading penetration testing certifications, such as OSCP and CPENT, and we work with leading accreditation bodies, such as EC-Council, ISACA and ISC2. 

Our training helps penetration testers to gain new skills and capabilities, so that they can further their career and support organisations in cyber defence.