261317 - Penetration Tester

SOL | State SOL | Employer SOL| Regional

Description
Creates test cases using in-depth technical analysis of risks and typical vulnerabilities, and produces test scripts, materials and packs to test new and existing software or services. Plans, coordinates and conducts cyber threat emulation activities in support of certification, accreditation and operational priorities to verify deficiencies in technical security controls.

Skill Level 1

Skills Assessment Authority ACS | ACS-FAQ | Your Career | My Future 

Caveats No caveats apply to this occupation.

Group: 2241 Mathematical Science Professionals

Description
Gathers, cleans and interprets data by processing and applying information technology tools to transform, prepare and communicate results using interactive visualisations such as graphs and charts.

Tasks

• Develops and executes penetration testing methodologies and strategies to identify weaknesses in security controls
• Creates test cases using in-depth technical analysis of risks and typical vulnerabilities
• Produces test scripts, materials and packs to test new and existing software or services for vulnerabilities
• Plans, coordinates and conducts cyber threat emulation activities to verify deficiencies in technical security controls, and provides recommendations for remediation
• Identifies vulnerability exploitations and potential attack vectors into a system, and analyses vulnerability scan results to assess security loopholes and threats
• May conduct phishing attacks or other tests to evaluate the effectiveness of security awareness training

Skill Level
Most occupations in this unit group have a level of skill commensurate with a bachelor degree or higher qualification. At least five years of relevant experience and/or relevant vendor certification may substitute for the formal qualification. In some instances relevant experience and/or on-the-job training may be required in addition to the formal qualification (ANZSCO Skill Level 1).