What is an Ethical Hacker?
Table of Contents
Ethical hacking (also known as penetration testing) is a proactive form of information security. Businesses and organizations hire ethical hackers to help improve their networks, applications, and other computer systems in order to prevent data theft and fraud. One of the first examples of ethical hacking occurred in the 1970s when the US government used "red teams" to hack its own computer systems.
An ethical hacker uses the same techniques to bypass a system's defences as a malicious hacker, but rather than take advantage of any vulnerabilities they find, they provide advice on how to fix them so a company can improve its overall security. In order for hacking to be ethical, the hacker must have permission from the owner to probe their network and identify security risks.
What does an Ethical Hacker do?
The purpose of ethical hacking is to look at the security of a system or network's infrastructure. An ethical hacker will attempt to bypass system security, and find and expose any weak points that could be taken advantage of by a malicious hacker. Vulnerabilities are typically found in improper system configuration and in hardware or software flaws.
An ethical hacker is required to research, document and discuss their methods and security findings with management and IT teams. This intelligence is then used by businesses and organizations to improve their system security so as to minimize or eliminate any potential attacks. Ethical hackers will also provide feedback and verification as an organization fixes security issues.
Ethical hacking has grown within the information security market. Any business or organization that either provides an online service, or has a network connected to the Internet should think about subjecting it to a penetration test. Successful testing doesn't always mean a system is 100% secure, but it should be able to thwart unskilled hackers and automated attacks. The Payment Card Industry Data Security Standard require companies to conduct annual penetration tests, particularly if any major changes are made in their applications or infrastructure.
Many large companies maintain employee teams of ethical hackers, while there are plenty of firms that offer ethical hacking as a service.
Find your perfect career
Would you make a good ethical hacker? Sokanu's free assessment reveals how compatible you are with a career across 5 dimensions!
What is the workplace of an Ethical Hacker like?
Ethical hackers work with organizations, businesses, the military, and the government to probe their networks for security holes and vulnerabilities while considering the mindset of someone who might have criminal motivations.
Why Ethical Hacking is So Important in a 21st Century Economy | Jennifer Arcuri | TEDxLiverpool
A Day in the Life of an Ethical Hacker
A Day in the Life of Sam Kitchen, Penetration Tester at PwC
What's a pen test? | Rapid7 Whiteboard Wednesday
An ethical hacker is a computer and networking expert who systematically attempts to penetrate a computer system or network on behalf of its owners for the purpose of finding security vulnerabilities that a malicious hacker could potentially exploit.
How to Get a Job as an Ethical Hacker
To help job seekers learn what’s involved in becoming an ethical hacker and the responsibilities of the position, we spoke with IT security professionals, instructors and certified hackers themselves. Here, we highlight the skills and certifications needed to rise to the top of the talent pool.
2017 Best Cities for Cybersecurity Professionals
It’s a good time to be working in cybersecurity. As hackers continue their onslaught, stealing information in sectors ranging from health care to retail sales, businesses will need experts in digital security to fight back.
Computer Systems Administrator
Computer Systems Engineer
Information Security Analyst
Full Stack Developer
Computer Systems Analyst
Software Quality Assurance Engineer
Computer Repair Technician