Business

Ethical hacking: What to look for in a pen tester

Full Width Featured Image With Sidebar
Brian Richards
Share 0
Share 0
Tweet 0

Penetration testing can help security administrators of a healthcare company figure out how effective their defensive measures are, but not all pen testers possess the same skill level and not every healthcare organization is set up for being tested.

The Journal of the American Medical Association recently reported that healthcare data breaches went up by 70 percent between 2010 and 2017. The financial consequences of a breach in a healthcare system are now more serious than ever, with an average of $408 per patient record.

The topic of cybersecurity is beginning to be discussed more often in executive meetings, and various localities and organizations are developing security protocols to ensure that organizations can shield themselves from potential dangers. What role does penetration testing play in the information security toolbox?

Testing the security of an organization’s network or particular function through simulated cyberattacks is known as pen testing. This can include things such as internet of things (IoT) devices and web applications. The objective is to ascertain any deficiencies or frailties within the system and determine the probability that a cybercriminal could take advantage of these susceptibilities.

Basically, security testers (or ethical hackers) imitate what malicious hackers do, in a controlled atmosphere so that a company has the ability to gauge and confront possible danger.

Nevertheless, pen testing might not be appropriate for all companies, so it is important for a company to take a close look at the state of its security, in order to decide if it is wise to employ a pen tester.

What Does a Penetration Tester Do on a Daily Basis?

The purpose of a penetration tester is to track down and suggest solutions to any potential vulnerabilities in digital or physical systems, stopping attackers with malicious intent from taking advantage of them. To reach this objective, professional penetration testers will use various techniques to locate security problems, mark down processes and proceedings, and craft penetration testing accounts concerning obtained intelligence for more superior personnel and customers.

More specific examples of a penetration tester’s daily activities include:

  • Conducting overall vulnerability assessments.
  • Scanning networks with a tool like Nmap.
  • Conducting an analysis of network structure and protocols with a tool like Wireshark.
  • Processing and reviewing large amounts of data or scouring file shares to look for passwords (I’ve spent entire days looking through file shares for login details).
  • Enumerating and attacking Active Directory environments and web applications.
  • Hunting for a foothold in a network, performing local privilege escalation, lateral movement, pivoting, and post-exploitation.
  • Communicating with clients and assisting senior managers and account holders with security debriefs and answering client questions; this could include sales calls or project kick-offs.

As a professional hacker or ethical intrusion analyst, much of your work will include recording your processes, working with consumers, and supplying details of your tasks and discoveries to both inner and outer stakeholders. To put it differently, entering instructions in a command line accounts for only three-fourths of the task.

In order to be a successful penetration tester, expertise in offensive security is not the only requirement. You should also think about cultivating excellent professional communication and interpersonal abilities. Composing formal emails, arriving on schedule, and submitting tasks promptly are all essential.

At certain companies I worked for, it was mandatory to reply to client questions within 24 hours. One company’s policy said we should answer any client inquiries right away or as soon as possible.

What Makes a Good Pen Tester?

The healthcare sector provides a distinct security landscape as compared to other sectors such as financial. Medical products like IoT, EHRs and old-fashioned computers create numerous potential safety issues.

Lee Kim, director of privacy and security for HIMSS North America, should look for pen testers with a background in practical applications and a familiarity with business contexts such as the healthcare industry.

Testing computer systems for security vulnerabilities in a healthcare setting differs from pen testing in a financial setting.

John Nye, vice president of cybersecurity strategy for CynergisTek, suggested that the individual conducting the pen test or the security company should comprehend the organization’s requirements and fears. They must also assess the possible weak spots in the system, both comprehending and completely elucidating the danger that inspection of those susceptibilities can pose.

Healthcare is particularly vulnerable to attack due to its complicated IT infrastructure that holds sensitive health information and other sensitive data. Additionally, there are many exploitable systems which may give unapproved individuals access.

An experienced ethical hacker can assist in identifying areas of risk within your organization’s and the patient’s data, describing how they might be used to exploit this information, and furnishing the solutions needed to tackle it.

Organizations in the healthcare industry who are in the process of hiring a pen tester or a team must be confident that the potential vendor comprehends their needs, and is willing to collaborate with them in order to gain that knowledge.

Nye stated that one should look for a partner that has experience with the healthcare industry and is ready to modify their usual strategies to fit the demand of their organization.

It’s essential to realize that each company is different and any security consultant who tells you that any one approach fits every situation is likely motivated by their own self-interest rather than your well-being, he noted.

A successful penetration tester must possess a sharp eye for detail, have precise skills, and be able to think of inventive solutions, which is “vital when performing a red team exercise”. Some may find certifications beneficial.

Budget and Contractual Considerations

It is essential for two important papers to exist before a penetration tester is able to start their job.

Nye explained that the scoping document details all the systems which an organization has allowed them to target. The document includes a list of systems that absolutely cannot be included. It is not feasible to start performing penetration testing without the list because it would create more issues than it would solve.

Nye states that the Letter of Authorization (LoA) is often referred to as the “get out of jail free card”. He explains that the LoA is basically a waiver which grants authorization to pen testers to do malicious activities on an organization’s systems and safeguards, relieving the pen tester from legal repercussions should they be discovered.

Nye pointed out that, from a technical standpoint, the instruments and strategies used by ethical hackers are exactly the same as those deployed by malicious hackers. “The difference is really only permission and scoping. Without the Authorization of Use, ethical hackers are committing an action just as illegal as those people who do not follow the laws,known as black hat hackers.

Kim cautioned that when it comes to spending, organizations need to make certain that the person performing the pen testing is in the same area or has the capacity to conduct it remotely, since travel charges should be incorporated in the fee.

Pen testing is not inexpensive. The expense of settling OCR fines, legal fees, and the cost of repairing any major security breach can be much more costly than anticipated.

Nye is of the opinion that organizations should be careful of vendors whose primary goal is to provide a large amount of pen tests rather than focusing on quality. These vendors might not charge a lot upfront, however, the assessments may be done using computer programs, and the pen testers may not spend enough time to get accurate results.

Nye warned organizations to be careful of when the situation reverses and the pen tests become very costly and consume too much time.

Unless you have extensive plans for a complete red team operation or have a vast amount of systems to assess, a penetration test should not be the most costly service you buy.

An effective evaluation should require only the amount of time necessary to collect adequate information to be examined. The specific requirements for your business and objectives should be the main factor in ascertaining the amount you need to purchase, without going overboard or purchasing too little.

How to Become a Penetration Tester: 5 Practical Steps

Step 1: Know Thyself (and Your Suitability for a Penetration Testing Career) 

Not everybody is well suited to a career in penetration testing.

Before you commit to dedicating yourself to the intricate art of penetration testing and taking the steps to become a penetration tester, you should determine if it is the right cybersecurity job for you.

There is no specific criteria that definitively proves if you would be a suitable candidate for the job. Although there are differences among penetration testers, I think it is crucial to possess certain qualities in order to excel at this profession and relish the daily atmosphere. These qualities are:

  • Passion for problem-solving.
  • Out-of-the-box creativity.
  • Unquenchable curiosity and a love of learning.

New hardware, applications, concepts, and vulnerabilities constantly surface. And that’s the undeniable beauty of penetration testing or cybersecurity as a career path:

No matter what, there is always something interesting and captivating that you can study and look into further.

Step 2: Level Up Your Skills

After obtaining a double major in Business Administration and Spanish, I got a job at a language translating firm with only twenty staff members. When the IT manager was let go, I stepped in and took on their duties. I educated myself about information technology and essentially became the sole technician for managing help requests and computer systems.

This advancement enabled me to delve further into the world of cyber security and take on other positions. I ultimately conducted and directed technical security assessments and hacking trials at PwC before transitioning to a smaller company where I specialized in distinct forms of hacking tests.

These examples of success demonstrate that nobody needs a professional background in cyber security to achieve success as an ethical hacker. It is essential to possess the right proficiency, mentality, and determination in order to successfully learn the basics.

Step 3: Choose a Hacking or Penetration Testing Certification

Following the acquisition of robust theoretical expertise and hands-on experience in the field of cyber security, attain a credential that validates your proficiency in offensive cyber security.

Getting a certification isn’t an absolute necessity for becoming a penetration tester. If you want to increase your odds of getting a job in penetration testing, make sure you contact recruiters and apply for junior roles. By displaying your knowledge and abilities, you can make sure your resume can pass computer checks that search for specific certification expectations.

Give priority to building skills when selecting which cyber security certificate to obtain. Robert Theisen, an ex-cybersecurity professor and content creator for HTB, wrote about selecting a certification or degree in cybersecurity or penetration testing, noting that the worth of a certification or degree is judged by the real-world skills it offers.

Step 4: Get your Hands Dirty in Real-World Environments

If you make the right decision in selecting your certification, then you’ll have practical experience in counting, getting around, and recognizing security flaws in existing settings as you reach this point. It is essential to have these abilities to become a successful penetration tester and they are now simpler to obtain than ever.

If you do not possess the means, employ penetration testing labs to experience the same dynamics of an actual corporate setting. Gaining laboratory practice is beneficial for both training and interviews because it raises your self-assurance in your hands-on abilities. You’ll have the capacity to converse confidently concerning your accomplishments.

Adding a certification demonstrating your comprehension, hands-on capabilities, and communication/reporting abilities to your resume will place you before the rest of the applicants vying for an introductory cyberspace defense post.

Step 5: Start Applying

Jobs in the cybersecurity domain can be located on recognizable websites such as LinkedIn or Indeed. Searching for that added advantage? Then Hack The Box’s cybersecurity employment plan is ideal for cybersecurity pros who are in search of a job, as well as hirers searching for applicants with tangible expertise.

Once you achieve the Professional Hacker level, we will (with your okay) make your public profile accessible to headhunters, granted you give us your approval. This will put you in touch with recruiting companies and positions that recognize the importance of your hands-on experience. An exceptional strategy to quicken your job hunt and exhibit your talents before you explain them to potential employers.

If you are currently signed up with HTB, just go to the Careers section and select the “Available for Hire” option. I suggest you turn it on, even though it is not compulsory, as you will be kept informed of the top job openings from businesses all around the world.

Pen Tester Checklist:

  • Are we ready for a pen tester? An organization needs a solid inventory, patch management processes and a strong security program, or an assessment will “blow up really quickly.” If you’re not ready, start those vulnerability scans, patching and inventories.
  • Find a pen tester with experience in the healthcare sector, as not all ethical hackers are created equal. A good pen tester will have honed their skills into a specific area, like web apps or internal networks.
  • Outline expectations, including the systems to pen test and systems off limits to the pen tester.
  • Avoid pen testers with a “one-size-fit-all” mentality, as well as the other side of the pendulum where the scope and cost is much too wide/expensive for the task. A good pen tester will partner with you to ensure you understand the assessment and risks.
  • Use the report and its recommendations to address vulnerabilities.
{"email":"Email address invalid","url":"Website address invalid","required":"Required field missing"}