Penetration Tester

• Conduct thorough penetration testing across diverse IT systems, including LAN, WAN, cloud platforms (AWS, Google Cloud), and on-premises infrastructure.
• Develop and execute attack frameworks using tools like Kali Linux, Metasploit, Burp Suite, and custom scripts to identify security weaknesses.
• Perform vulnerability assessments aligned with NIST standards and ISO 27000 series to evaluate system security plans and compliance requirements.
• Analyze network protocols such as TCP/IP, IPsec, BGP, OSPF, EIGRP, and routing protocols to detect potential exploitation points.
• Test and evaluate firewall configurations (Cisco ASA), IDS/IPS systems, SIEM solutions (Splunk), and other security controls for effectiveness.
• Assist in incident response activities by analyzing logs via tools like New Relic or SolarWinds, supporting incident recovery efforts.
• Collaborate with system administrators to implement system hardening measures on operating systems including Windows, Linux (Debian, CentOS), macOS, and openSUSE.
• Research emerging threats using threat intelligence platforms and maintain up-to-date knowledge of attack frameworks and vulnerabilities.

Do you have experience in Windows?, We are seeking a highly motivated and detail-oriented Penetration Tester to join our cybersecurity team. In this vital role, you will proactively identify vulnerabilities within our IT infrastructure, network architecture, and cloud environments by simulating cyberattacks and conducting comprehensive vulnerability assessments. Your expertise will help strengthen our security posture, ensure compliance with industry standards such as NIST and ISO 27000, and safeguard critical information assets. This position offers an exciting opportunity to apply advanced security analysis techniques in a fast-paced, innovative environment committed to continuous improvement and excellence in cybersecurity., * Proven experience in computer networking including LAN/WAN architecture, routing protocols (OSPF, BGP), VLANs, VPNs (IPsec), load balancing, and network support.

• Strong understanding of cybersecurity principles such as vulnerability management, threat detection & response, system security plans, and incident management.
• Hands-on experience with vulnerability research tools and techniques for assessing system security across various platforms.
• Familiarity with cloud computing environments like AWS or Google Cloud Platform along with cloud infrastructure security best practices.
• Knowledge of encryption standards (FIPS), PKI implementations, LDAP/Active Directory integration, SSO protocols, GPO management, and system administration tasks.
• Proficiency in scripting languages such as Python or Bash for automation of testing procedures.
• Ability to interpret security policies aligned with frameworks like FedRAMP or FISMA while adhering to ITIL or COBIT governance models.
• Relevant certifications such as OSCP (Offensive Security Certified Professional), CEH (Certified Ethical Hacker), CISSP or GIAC certifications are highly desirable. Join us to leverage your cybersecurity expertise in a dynamic environment that values innovation! Your skills will directly contribute to protecting vital digital assets while advancing your career in the ever-evolving field of information security.