Penetration Tester (Offensive Security)

Conduct authorized security assessments against web, cloud, and infrastructure targets to identify vulnerabilities, verify exploitability, and deliver actionable remediation guidance.

Responsibilities

• Plan and execute agreed penetration tests (web apps, APIs, cloud, networks) under rules of engagement.
• Produce clear technical reports with risk rating, reproduction steps, and remediation recommendations.
• Work with engineering teams to validate fixes and re-test.
• Keep tools, techniques, and test methodology up to date; contribute to internal playbooks.

Required

• 3+ years in offensive security/penetration testing or red-team engagements.
• Strong web app, network, and host testing experience; familiarity with common tools and manual testing techniques.
• Experience producing clear technical and executive reports.
• Bachelor’s in CS/IT or equivalent experience.

Desired

• OSCP, OSWE, CREST, eJPT or similar certification.
• Experience with cloud (AWS/Azure/GCP) security testing.

Compliance

All work is strictly authorized and performed under approved scopes and legal agreements.

Job Type: Full-time

Work Location: In person