Pen Tester Consultant (1099)
Role details
Job location
Tech stack
Job description
We are seaking a consultant Penetration Tester where you'll be a critical part of our security team, tasked with proactively identifying vulnerabilities across our customers' entire technology stack to secure their systems and protect their assets. This is a role for a self-starter who excels at simulating real-world threats, doesn't give up at the first sign of failure, and is able to clearly relay testing results to technical and non-technical audiences.
Key Roles & Responsibilities
- Deliver application, network, systems, and infrastructure penetration tests for customers
- Prepare high quality reports detailing security issues, making recommendations, and identifying solutions, contribute to presentations and discussions with customers around testing performed, key results, recommendations, and the next steps
- Conduct reconnaissance and gather open-source intelligence
- Safely deploy offensive tools and techniques against authorized targets
- Develop custom scripts and tools to enhance red team capabilities
- Communicate findings and strategies to technical and executive stakeholders
- Provide risk-based recommendations and support defensive teams in improving detection and response
- Build and promote strong, long-lasting relationships with a diverse range of customers, and identify and explore opportunities within existing and new customers
- Ensure that KPIs around client expectation management, delivery deadlines, quality of work and deliverables etc are met, including conducting quality management
- Share knowledge and support Professional Services team members to up/cross skill in hard and soft skills
- Assist with innovation, and practice improvement activities, under supervision
Preferred Skills:
- Certifications such as OSCP, OSCE, OSWE, GPEN, GCIH, GWAPT, GXPN.
Requirements
Do you have experience in Security system vulnerability testing?, Do you have a Bachelor's degree?, * Bachelor's degree in Computer Science, IT, or related field, or equivalent experience.
- 4+ years of hands-on experience in offensive security, including:
- Network and web application penetration testing
- Social engineering (email, phone, physical)
- Exploit development or tool customization
- Strong understanding of threat actor tactics, techniques, and procedures.
- Experience with red, blue, or purple team exercises.
- Willingness to travel for on-site assessments as needed - less than 10% travel
- Effective communication skills, both written and verbal skills
- Ability to adapt and thrive in a fast-paced, evolving technical landscape.
- Proven ability to problem-solve and think critically in a fast-paced environment.
All candidates must be eligible to work in the U.S. for any employer and must be able to pass a background check.