Simply put, an ethical hacker’s job is to approach an organization as if they were a cybercriminal, to replicate a malicious hacker at work but stop short of actually following through on an attack. Instead, they will report any vulnerabilities or concerns and seek countermeasures to shore up the system’s defenses.

The job description of an Ethical Hacker can include the following:

Responsibilities:

• Meet with clients to discuss the security system currently in place.
• Research the company’s system, network structure, and possible penetration sites.
• Conduct multiple penetration tests on the system.
• Identify and record security flaws and breaches.
• Identify areas of high-level security.
• Review and rate the security network.
• Create suggestions for security upgrades.
• Compile penetration test reports for the client.
• Conduct penetration tests once new security features have been implemented.
• Suggest alternate upgrades.

Selection Criteria:

• Bachelor’s degree in information technology or computer science.
• CEH Certification.
• Proven work experience as a certified ethical hacker.
• Advanced knowledge of networking systems and security software.
• In-depth knowledge of parameter manipulation, session hijacking, and cross-site scripting.
• Technical knowledge of routers, firewalls, and server systems.
• Good written and verbal communication skills.
• Good troubleshooting skills.
• Ability to see big-picture system flaws.