CompTIA, the leading provider of vendor-neutral skills certifications for the information technology (IT) workforce, expanded its portfolio of credentials for cybersecurity professionals with the launch of a beta exam version of CompTIA PenTest+.
The new certification assesses the latest penetration testing and vulnerability assessment and management skills that IT professionals need to run a successful, responsible penetration testing program.
"Organizations are more aggressive and proactive when it comes to cybersecurity, utilizing many approaches to identify network vulnerabilities and mitigate risks before something bad happens," said James Stanger, chief technology evangelist at CompTIA.
"Penetration testing, which simulates a real-world attack on a network to assess security levels and determine points of weakness, is a valuable counter-measure that has changed significantly over time," Stanger continued. "With the Internet of Things, mobile and especially the cloud, networking has transformed remarkably over the past few tears. CompTIA PenTest+ validates the penetration testing skills a cybersecurity professional needs to effectively assess a modern network's resiliency against cyber-attacks."
Changing the corporate cybersecurity mindset is one of 12 trends to watch this year, according to CompTIA's recently published "IT Industry Outlook 2018."
"Beyond the technical aspects, organizations will also begin building business processes that enhance security, and they will implement end user training to mitigate human error," the report states. "In short, companies will shift their security mindset from technology-based defenses to proactive steps that include technology, process, and education."
CompTIA PenTest+ is targeted at cybersecurity professionals responsible for hands-on penetration testing and vulnerability assessment. Penetration tester, vulnerability tester, security analyst, vulnerability assessment analyst, network security operations, and application security vulnerability are examples of the job role that will benefit from this credential.
"CompTIA PenTest+ is unique because IT professionals must demonstrate, through real-world simulations, their hands-on ability to test devices in new environments, such as the cloud, the Internet of Things and mobile, in addition to desktops and servers," Stanger said.
Individuals are tested in five technical areas related to penetration testing: planning and scoping; information gathering and vulnerability identification; attacks and exploits; penetration testing tools; and reporting and communication.
Beta test takers will be notified this summer – after the beta phase has concluded – whether they've passed the exam. Individuals who earn a passing score will become CompTIA PenTest+ certified.
CompTIA PenTest+ is the latest addition to the association's portfolio of certifications, which IT professionals rely on to launch and advance their careers.