Web Application Penetration Tester Survey

Please tell us about yourself

20% of survey complete.

This survey is a joint effort between The SANS Institute (www.sans.org), GIAC (The Global Information Assurance Certification Program, www.giac.org) and WASC (The Web Application Security Consortium, www.webappsec.org). Our goal is to gather feedback regarding typical job tasks of a web application penetration tester. The questions you will answer relate to the job task focus of a web application penetration tester. We define this role as anyone tasked with the job of testing web applications on security aspects. We consider job titles of senior QA analysts, security consultants, security testing analyst and some technical auditors as fitting in this category.

The content in this survey is broken down into three categories:

1. Web Application Fundamentals
2. Pen Testing Concepts
3. Security Solutions Domain

At the end of each section you have the option to suggest additional topics related to each category that have been omitted or overlooked.

Question Title

* How many years of web application design/testing experience do you have?

Less than one

One or two

Three to five

Six to ten

More than ten

Question Title

* What is your level of formal education?

GED or H.S Diploma

Some College

AA Degree

Bachelor's Degree

Master's Degree

PHD

Question Title

* How many IT Security or IT related certifications do you hold?

One

Two or Three

Four or Five

Six to ten

Ten or more

Question Title

* Would you be willing to answer follow up questions via email?

Yes

If yes, please provide your e-mail address:

Question Title

* How many years of web application design/testing experience do you have?

Question Title

* What is your level of formal education?

Question Title

* How many IT Security or IT related certifications do you hold?

Question Title

* Would you be willing to answer follow up questions via email?

Question Title

* (Optional) Tell us who you are you, first and last name.