Ethical Hackers Wear Computing’s ‘White Hat’

“Ethical hacker” sounds like an oxymoron, but the role of these “white hat” security experts is crucial to keeping computer systems safe..

These elite professionals are hired to attempt to break into a system to discover vulnerabilities and propose solutions before malicious hackers exploit the weakness to the detriment of the organization. The EC-Council describes an ethical hacker as “an individual… who can be trusted to undertake an attempt to penetrate networks and/or computer systems using the same methods and techniques as a malicious hacker.”

In large organizations, penetration testing, another term often used — some claim wrongly — for ethical hacking, is done regularly. The idea is to stay one step ahead of “black hat” hackers who are constantly attempting to break into networks and systems. Whether they do it for the sense of adventure – so-called “gray hat” hackers – or to steal or destroy data or hold it hostage in exchange for ransom, these hackers are committing a crime.

Catching them is not easy. Many intrusions come from overseas; some are state-sponsored. Even when they are domestic, hackers are usually skilled enough to cover their tracks well enough to go unapprehended. The best may even go undetected until the damage is done.

That’s why the work of ethical hackers is so important, prevention being the best cure.

Increasingly, organizations are hiring or contracting security professionals with one of the two most common certifications in penetration testing. Both require candidates to take an extensive exam.

CompTIA, the computer trade organization, offers a nearly three-hour long test with up to 85 questions. The CompTIA PenTest+ is a combination of multiple choice and performance questions based around simulations.

The Certified Ethical Hacker test of the EC-Council is 4 hours long and all multiple-choice. Unlike the CompTIA test, the certifying organization, EC-Council, requires candidates to first take the organization’s training program or provide proof of two years of work experience in information security.

Both organizations require holders to earn continuing education credits over a three-year period in order to retain their certification.

The two organizations compete fiercely for candidates, with each claiming their certification is better and more thorough.

EC-Council even argues that penetration testing is not the same as ethical hacking, arguing that “in many organizations ethical hackers are not even involved in penetration testing teams or processes.”

Which is best? As with most certifications in IT, both sides have their proponents. For a relatively even-handed approach, here’s a link to a Medium article discussing both. Spoiler alert: It gives the nod to the CEH certification largely because it’s been around longer and is accepted as a DoD 8570 Baseline Certification.

From an employer’s perspective, both certifications mean the candidate has been tested by a credible outside organization and found to be capable of providing that dose of prevention so critical to today’s cybersecurity.

What It Means to Be a Leader During a Time of Crisis
General Interest Leadership + Management Worklife

What It Means to Be a Leader During a Time of Crisis

Mid-Life Crisis? Consider a Mid-Life Career Switch
Accounting + Finance General Interest Information Technology Leadership + Management Worklife

Mid-Life Crisis? Consider a Mid-Life Career Switch

Lawyers Look to Move Firms to Keep Remote Work
Legal Support

Lawyers Look to Move Firms to Keep Remote Work

Is the Hybrid Workplace Sustainable?
Worklife

Is the Hybrid Workplace Sustainable?

Bank of America, Competitors to Raise Pay
Financial Services

Bank of America, Competitors to Raise Pay

Class of 2021 to Enter Job Market
Financial Services Healthcare Information Technology Marketing Technology Professional Support

Class of 2021 to Enter Job Market

Pharmacies Are Entering the Mental Health Market
Healthcare Pharma

Pharmacies Are Entering the Mental Health Market

Pandemic Challenges Create New Opportunities for Virtual Career Development
Worklife

Pandemic Challenges Create New Opportunities for Virtual Career Development

America’s New Tech Hubs
Information Technology

America’s New Tech Hubs

How to Recognize if a Manager Is Right for You
Worklife

How to Recognize if a Manager Is Right for You

Green Key Resources is Hiring!
Accounting + Finance Architecture + Engineering Creative Financial Services Healthcare Human Resources Information Technology Legal Support Marketing Technology Pharma Professional Support

Green Key Resources is Hiring!

How to Think Like a Lawyer
Legal Support

How to Think Like a Lawyer

3 Questions to Unlock Your Authentic Career
Creative Worklife

3 Questions to Unlock Your Authentic Career

Businesses Rethink “Necessary Travel”
Worklife

Businesses Rethink “Necessary Travel”

YOLO Is Sparking Riskier Career Moves
Worklife

YOLO Is Sparking Riskier Career Moves

21 Ways to Celebrate Earth Day Today & Beyond
Architecture + Engineering Worklife

21 Ways to Celebrate Earth Day Today & Beyond

Want to Feel More Connected? Try Some LOLs
Leadership + Management

Want to Feel More Connected? Try Some LOLs

In a Time of Crisis, What Makes a Good Leader?
Leadership + Management

In a Time of Crisis, What Makes a Good Leader?

The Pandemic Is Altering Data Privacy Expectations
Information Technology

The Pandemic Is Altering Data Privacy Expectations

Job Openings Hit a Two-Year High
Human Resources

Job Openings Hit a Two-Year High

Latest Blog Posts
View All Posts
What It Means to Be a Leader During a Time of Crisis

What It Means to Be a Leader During a Time of Crisis

During the early months of the pandemic, team leaders, managers, and company executives had to use cognitive reframing to build...
Read More
Mid-Life Crisis? Consider a Mid-Life Career Switch

Mid-Life Crisis? Consider a Mid-Life Career Switch

Far too often, ages and life stages are regarded as barriers to starting a new career. But the mid-life career...
Read More
Lawyers Look to Move Firms to Keep Remote Work

Lawyers Look to Move Firms to Keep Remote Work

As law firms across the country consider brining an end to remote work, some lawyers and other legal professionals are...
Read More