Penetration Testing Engineer
Identifying vulnerabilities in systems and applications through ethical hacking
50
技能
5
级别
131
必备
250
要求
Penetration Testing Engineer是Security Engineering族群中的角色。涵盖5个级别的50项技能(从Junior到Principal)。其中131项为必备技能。关键领域:Programming Fundamentals, Backend Development, Database Management。
技能矩阵
50 技能 × 5 级别. 点击单元格查看详情。
A Awareness
W Working
V Advanced
E Expert
AI-Assisted Development
4 技能| 技能 | Jun | Mid | Sen | Lead | Princ |
|---|---|---|---|---|---|
| GitHub Copilot | A | W | A | E | E |
| Cursor IDE | A | W | A | E | E |
| ChatGPT / Claude | A | W | A | E | E |
| Prompt Engineering for Code | A | W | A | E | E |
API & Integration
6 技能| 技能 | Jun | Mid | Sen | Lead | Princ |
|---|---|---|---|---|---|
| REST API Design | A | W | A | E | E |
| GraphQL Design | A | W | A | E | E |
| WebSocket API Design | A | W | A | E | E |
| API Documentation | A | W | A | E | E |
| API Testing | A | W | A | E | E |
| Rate Limiting & Throttling | A | W | A | E | E |
Architecture & System Design
1 技能| 技能 | Jun | Mid | Sen | Lead | Princ |
|---|---|---|---|---|---|
| System Design Fundamentals | A | W | A | E | E |
Backend Development
1 技能| 技能 | Jun | Mid | Sen | Lead | Princ |
|---|---|---|---|---|---|
| Redis | A | W | A | E | E |
Cloud & Infrastructure
6 技能| 技能 | Jun | Mid | Sen | Lead | Princ |
|---|---|---|---|---|---|
| Docker | A | W | A | E | E |
| Container Security Scanning | A | W | A | E | E |
| Kubernetes Core | A | W | A | E | E |
| AWS | A | W | A | E | E |
| Network Fundamentals | A | W | A | E | E |
| VPN & Network Isolation | A | W | A | E | E |
Database Management
1 技能| 技能 | Jun | Mid | Sen | Lead | Princ |
|---|---|---|---|---|---|
| PostgreSQL | A | W | A | E | E |
DevOps & CI/CD
1 技能| 技能 | Jun | Mid | Sen | Lead | Princ |
|---|---|---|---|---|---|
| GitHub Actions / GitLab CI | A | W | A | E | E |
Documentation
1 技能| 技能 | Jun | Mid | Sen | Lead | Princ |
|---|---|---|---|---|---|
| Runbook & Playbook Writing | A | W | A | E | E |
Observability & Monitoring
4 技能| 技能 | Jun | Mid | Sen | Lead | Princ |
|---|---|---|---|---|---|
| Structured Logging | A | W | A | E | E |
| ELK Stack | A | W | A | E | E |
| Prometheus & Grafana | A | W | A | E | E |
| OpenTelemetry | A | W | A | E | E |
Programming Fundamentals
7 技能| 技能 | Jun | Mid | Sen | Lead | Princ |
|---|---|---|---|---|---|
| Algorithms & Complexity | A | W | A | E | E |
| Data Structures | A | W | A | E | E |
| OOP & SOLID Principles | A | W | A | E | E |
| Design Patterns | A | W | A | E | E |
| Multithreading | A | W | A | E | E |
| Async Programming | A | W | A | E | E |
| Code Quality & Refactoring | A | W | A | E | E |
Security
13 技能| 技能 | Jun | Mid | Sen | Lead | Princ |
|---|---|---|---|---|---|
| OWASP & Application Security | A | W | A | E | E |
| SAST/DAST | A | W | A | E | E |
| Secure Coding Practices | A | W | A | E | E |
| Threat Modeling | A | W | A | E | E |
| Dependency Vulnerability Scanning | A | W | A | E | E |
| Network Security | A | W | A | E | E |
| Cloud Security | A | W | A | E | E |
| Kubernetes Security | A | W | A | E | E |
| JWT / OAuth2 / OIDC | A | W | A | E | E |
| RBAC / ABAC Authorization | A | W | A | E | E |
| Incident Response Process | A | W | A | E | E |
| Digital Forensics Basics | A | W | A | E | E |
| Vulnerability Management | A | W | A | E | E |
Testing & QA
3 技能| 技能 | Jun | Mid | Sen | Lead | Princ |
|---|---|---|---|---|---|
| Unit Testing | A | W | A | E | E |
| Integration Testing | A | W | A | E | E |
| Security Testing | A | W | A | E | E |
Version Control & Collaboration
2 技能| 技能 | Jun | Mid | Sen | Lead | Princ |
|---|---|---|---|---|---|
| Git Advanced | A | W | A | E | E |
| Code Review | A | W | A | E | E |
常见问题
Penetration Testing Engineer角色需要哪些技能?
Penetration Testing Engineer角色需要50项技能,其中131项为必备。技能分布在5个级别:从Junior到Principal。 查看完整矩阵.
如何在Penetration Testing Engineer角色中晋升到下一级别?
使用等级计算器评估您当前的级别并获取个性化建议。系统将显示晋升所需发展的技能。
社区如何定义Penetration Testing Engineer角色的要求?
角色要求由社区通过提案系统制定。任何成员都可以提出修改建议,经过投票和专家评审后生效。
正在加载评论...
登录以加入讨论