Processes

Conduct penetration testing

How conduct penetration testing are reshaped as AGI capability advances.

ProcessesConduct penetration testing
Conduct penetration testing — illustrated

The bottom line

Roughly 95% of the work in Conduct penetration testing is information-shaped — already within reach of AI delivery. The question here is not whether it shifts, but which tasks go first and who staffs the residual.

Why: With no child occupations seeded, the evaluation relies on the PCF lens 'Develop and manage IT resilience and risk' and the process description. Simulating attacks to evaluate IT environments, systems, and networks is pure remotely-doable software and knowledge work, placing it firmly in the digital band.

grounded in the economy graph · digital scalar 0.95 · digital

Related articles

No articles yet for this entity.

Recent capability events

No capability events for this entity yet.

How the work flows

Trigger: A scheduled security assessment cycle, a major system deployment, or a compliance mandate initiates the testing protocol.

  1. Define test scope and rules of engagement
  2. Perform reconnaissance and gather intelligence on target systems
  3. Scan networks and applications for potential vulnerabilities
  4. Execute simulated attacks to exploit identified weaknesses
  5. Document successful breaches and determine potential impact
  6. Compile findings and recommend remediation actions

Outcome: Identified vulnerabilities are documented, categorized by risk severity, and handed off to IT security teams for remediation.

Measured by

Vulnerabilities Identified Per TestPercentage Of Systems CoveredAverage Vulnerability Severity ScoreTime To Complete Penetration Test