{"id":10,"date":"2024-01-14T15:34:34","date_gmt":"2024-01-14T15:34:34","guid":{"rendered":"https:\/\/wp.pprd.odu.edu\/spring2017-met330-template\/?page_id=10"},"modified":"2024-04-22T19:54:52","modified_gmt":"2024-04-22T19:54:52","slug":"tests","status":"publish","type":"page","link":"https:\/\/sites.wp.odu.edu\/bequette\/tests\/","title":{"rendered":"Career Professional Paper"},"content":{"rendered":"\n<p>The Importance of Social Science to Penetration Testing<\/p>\n\n\n\n<p><br>Penetration Testing is an exciting, ever changing career field which requires<br>increasingly more the skills of adaptability, versatility, ingenuity and a \u201ctry harder\u201d<br>mindset. The importance of social science is integral to multiple aspects of the career,<br>with an emphasis on understanding human behavior and decision making processes. A<br>more vital emphasis within the field must be made to understand marginalized groups,<br>so that cybersecurity processes and interactions can be tailored to meet their needs.<br>Penetration Testing relies on social science to understand human behavior.<br>Understanding those behaviors allow for bespoke approaches to penetration testing<br>engagements. Examples of this include creating effective phishing campaigns and<br>thorough, efficient password-cracking wordlists. Understanding how humans interact<br>with phishing emails, or how they choose their passwords can allow for a penetration<br>testing audit to perform to the highest degree, and thus provide a customer with the<br>most effective avenues for remediation.<br>Understanding the human psyche and how humans interact within the physical<br>world can help create tailored risk assessments and user awareness and security<br>trainings. Without this intimate knowledge, many avenues to risk and vulnerability can<br>go unchecked and untested, leaving customers vulnerable to threat actors who<br>understand and utilize social sciences better. Social engineering campaigns all fall<br>within this realm of needing to utilize social science, because without it the most<br>effective and efficient solutions to cybersecurity will not be found.<br>Because of the vast array of differences in communities, companies and<br>industries, people in this field must learn the highlighted skills of versatility and<br>adaptability. Creating unique and tailored cybersecurity policy is a must, as the needs of<br>all customers are different. Because of social science applications, one can better<br>understand the needs of customers. Meeting these unique needs cannot be done<br>without first understanding these groups through the lens of psychology and sociology.<br>All the applications of social science within the penetration testing field need to<br>be viewed through different lenses. Marginalized groups can be disproportionately<br>affected by cybersecurity measures, or a lack thereof. Many schools without proper<br>funding do not receive the attention and detail needed to be effective against threats<br>and vulnerabilities. Through the use of social sciences within this field, all-<br>encompassing and inclusive security testing can be performed that meets the diverse<br>needs of marginalized groups.<br>As penetration testers, special care must be taken to adapt and be versatile in<br>meeting the needs of customers. Penetration testers must advocate for security<br>awareness, training and discipline to groups that face inequalities and disparities.<br>With all the different needs of customers and diverse groups in mind, we must<br>ensure to integrate ethical considerations when developing cybersecurity policy and<br>penetration testing engagements. Considering the wider implications of our actions, and<br>the actions of others, we can realize that we have an ethical responsibility to protect<br>people. When ethical responsibility is factored in, penetration testers must ensure that<br>the greatest care is taken in protecting people and delivering the highest quality of<br>product and service. Integrating social science into the field is not just smart, it is<br>necessary to produce relevant, accurate information.<br>References<br>Carpenter, Perry. \u201cCouncil Post: Cybersecurity: What Can We Learn from the Social<\/p>\n","protected":false},"excerpt":{"rendered":"<p>The Importance of Social Science to Penetration Testing Penetration Testing is an exciting, ever changing career field which requiresincreasingly more the skills of adaptability, versatility, ingenuity and a \u201ctry harder\u201dmindset. The importance of social science is integral to multiple aspects&#8230; <a class=\"more-link\" href=\"https:\/\/sites.wp.odu.edu\/bequette\/tests\/\">Continue Reading &rarr;<\/a><\/p>\n","protected":false},"author":28370,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"footnotes":""},"_links":{"self":[{"href":"https:\/\/sites.wp.odu.edu\/bequette\/wp-json\/wp\/v2\/pages\/10"}],"collection":[{"href":"https:\/\/sites.wp.odu.edu\/bequette\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/sites.wp.odu.edu\/bequette\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/sites.wp.odu.edu\/bequette\/wp-json\/wp\/v2\/users\/28370"}],"replies":[{"embeddable":true,"href":"https:\/\/sites.wp.odu.edu\/bequette\/wp-json\/wp\/v2\/comments?post=10"}],"version-history":[{"count":2,"href":"https:\/\/sites.wp.odu.edu\/bequette\/wp-json\/wp\/v2\/pages\/10\/revisions"}],"predecessor-version":[{"id":84,"href":"https:\/\/sites.wp.odu.edu\/bequette\/wp-json\/wp\/v2\/pages\/10\/revisions\/84"}],"wp:attachment":[{"href":"https:\/\/sites.wp.odu.edu\/bequette\/wp-json\/wp\/v2\/media?parent=10"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}