Penetration testing and system testing are different but there is some
skill crossover.
System testing is a part of the QA process and is performed on
products/software before they are released. A system tester may or
may not do any security testing. System testers who perform security
testing may have skills that would be useful in penetration testing.
A penetration test is security specific and does not focus on any one
product. A penetration test looks at the security of running systems
with different operating systems and software. A penetration test may
take advantage of configuration issues that are not relevant in a system
test.
Steven
-----Original Message-----
From: leehaynes@carleeprotection.com
[mailto:leehaynes@carleeprotection.com]
Sent: Saturday, March 25, 2006 3:20 AM
To: pen-test@securityfocus.com
Subject: Pen testing and empyment
Hi,
Can anyone help. I have been involved in system testing for about the
last 18 months, and would now like to work as a pent tester.
I am applying for junoir pentest roles and they are ask me if I have any
pen test expeirence, I tell them what I have done and then they ask me
for my CV.
After receiveing my CV their tell me that I have no pentesting
experince. I suppose what I would like to know is:
Is a pen testing and a system testing one and the same or are they
different, because after a qiuck search on the net they to me appear to
be the same.
Can any one answer my question.
Thanks
Lee
------------------------------------------------------------------------
------
This List Sponsored by: Cenzic
Concerned about Web Application Security?
As attacks through web applications continue to rise, you need to
proactively protect your applications from hackers. Cenzic has the most
comprehensive solutions to meet your application security penetration
testing and vulnerability management needs. You have an option to go
with a managed service (Cenzic ClickToSecure) or an enterprise software
(Cenzic Hailstorm).
Download FREE whitepaper on how a managed service can help you:
http://www.cenzic.com/forms/ec.php?pubid=10025
And, now for a limited time we can do a FREE audit for you to confirm
your results from other product. Contact us at request@cenzic.com
------------------------------------------------------------------------
------
------------------------------------------------------------------------------
This List Sponsored by: Cenzic
Concerned about Web Application Security?
As attacks through web applications continue to rise, you need to proactively
protect your applications from hackers. Cenzic has the most comprehensive
solutions to meet your application security penetration testing and
vulnerability management needs. You have an option to go with a managed
service (Cenzic ClickToSecure) or an enterprise software (Cenzic Hailstorm).
Download FREE whitepaper on how a managed service can help you:
http://www.cenzic.com/forms/ec.php?pubid=10025
And, now for a limited time we can do a FREE audit for you to confirm your
results from other product. Contact us at request@cenzic.com
------------------------------------------------------------------------------
