Penetration Tester
Penetration Tester
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Job Description
Overview
We are seeking a highly skilled and experienced Senior Penetration Tester to join our cybersecurity team. This individual will lead complex penetration testing activities conduct advanced red team engagements and thoroughly assess our clients networks applications and systems for vulnerabilities. The ideal candidate is a seasoned security professional with a passion for uncovering weaknesses before adversaries can exploit themand a knack for communicating technical findings to both technical and nontechnical audiences.
Key Responsibilities
Advanced Penetration Testing
- Execute sophisticated penetration tests against web applications networks cloud environments and mobile platforms.
- Perform indepth reconnaissance exploit development and postexploitation activities to fully gauge security weaknesses.
- Execute sophisticated penetration tests against web applications networks cloud environments and mobile platforms.
Threat Modeling & Risk Assessment
- Collaborate with stakeholders to identify highrisk areas and design targeted testing strategies.
- Evaluate potential attack vectors assess impact and prioritize remediation steps based on industry best practices.
- Collaborate with stakeholders to identify highrisk areas and design targeted testing strategies.
Red Team Engagements
- Plan and lead complex red team operations simulating realworld attack scenarios that encompass social engineering physical intrusion and cyber infiltration tactics.
- Coordinate with purple team exercises to help stakeholders detect respond to and recover from simulated attacks.
- Plan and lead complex red team operations simulating realworld attack scenarios that encompass social engineering physical intrusion and cyber infiltration tactics.
Reporting & Documentation
- Prepare clear detailed reports outlining findings remediation guidance and risk assessments.
- Communicate results effectively to executives security teams and developers ensuring stakeholders fully understand threats and mitigation strategies.
- Prepare clear detailed reports outlining findings remediation guidance and risk assessments.
Technical Leadership & Mentorship
- Serve as a subject matter expert for junior testers guiding them in methodologies tooling and emerging threat techniques.
- Stay current with new offensive security tools vulnerability trends and threat landscapes sharing knowledge to enhance team capabilities.
- Serve as a subject matter expert for junior testers guiding them in methodologies tooling and emerging threat techniques.
Security Program Enhancement
- Advise clients and internal teams on best practices for security architecture secure coding standards and incident response.
- Contribute to the continuous improvement of penetration testing methodologies processes and internal tools.
- Advise clients and internal teams on best practices for security architecture secure coding standards and incident response.
Requirements
Education & Certifications
- Bachelors degree in Computer Science Cybersecurity or equivalent work experience.
- Relevant certifications such as OSCP OSCE GPEN GXPN or CEH strongly preferred.
- Bachelors degree in Computer Science Cybersecurity or equivalent work experience.
Experience
- Minimum of 5 years handson penetration testing experience with a proven track record of finding complex vulnerabilities.
- Indepth knowledge of common frameworks (OWASP Top 10 MITRE ATT&CK NIST) and industrystandard tools (Burp Suite Metasploit etc..
- Experience with programming/scripting in languages such as Python Go or PowerShell for exploit development and automation.
- Minimum of 5 years handson penetration testing experience with a proven track record of finding complex vulnerabilities.
Security Clearance
- Current or active government security clearance is strongly preferred.
- Applicants able to obtain or maintain a clearance may also be considered.
- Current or active government security clearance is strongly preferred.
Technical & Soft Skills
- Proficiency in network protocols operating systems (Windows Linux macOS) and cloud environments (AWS Azure GCP).
- Familiarity with containerized environments (Docker Kubernetes) and DevSecOps principles.
- Strong analytical and problemsolving abilities with excellent attention to detail.
- Effective communication and presentation skills for delivering technical results to nontechnical audiences.
- Proficiency in network protocols operating systems (Windows Linux macOS) and cloud environments (AWS Azure GCP).
Desired Attributes
- Adaptability Able to quickly pivot to new technologies frameworks and attack vectors.
- Collaboration Comfortable working crossfunctionally and guiding teams through advanced security scenarios.
- Curiosity Passion for researching cuttingedge offensive security tactics and pushing boundaries to identify critical vulnerabilities.
Benefits
Employment Type
Full-Time
