The techniques that an ethical hacker and a malicious one use are the same: social engineering, penetration testing, investigation, programming decoy systems or physical and digital tools.
Therefore, they can be considered double-edged swords; However, experts on the subject highlight that greater openness is required on the part of companies to receive help and reward those who submit reports of security failures.
Of course, to carry out white hat hacker tasks, as they are also known, an ethical approach is needed, where characteristics such as confidentiality stand out, since in many cases companies are afraid to share elements such as their source code due to the risk of filtration. However, access to this element allows them to find problems of greater impact.
Andrew Wilson, general director of Bishop Fox for Latin America, notes the need to create more ethical hacking specialists, as it is a sector where strong careers can also be created with an attractive economic benefit.
What should you study to be an ethical hacker?
Although there is no specific career to be an ethical hacker, the professional guidance portal, Indeed, recommends having studies in computer science and another career related to computing and networks.
Another alternative is to obtain a certification in ethical hacking, through which knowledge is obtained and the practical skills of applicants are tested against different types of computer attacks.
Javier Bernardo, leader of ethical hackers at Strike, highlights the need to be self-taught and seek support in developer communities, since it is an environment where the creation of new methodologies is essential and in those spaces is where most of the information is shared. of knowledge that is not given in the classrooms.
How much does an ethical hacker earn?
Although it is a field where experience is an important element, jobs for young graduates usually start at 20,000 pesos per month, while that of a specialist with more experience can reach up to 40,000 pesos per month. In addition, there are “freelance” hackers, who dedicate themselves to notifying companies of vulnerabilities in search of rewards and, the more complex they are, the higher the payments.