Pen Tester Consultant (1099)

Lumifi Cyber, Inc.
Scottsdale, United States of America
28 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Intermediate

Job location

Scottsdale, United States of America

Tech stack

Software System Penetration Testing
Open Source Intelligence
Red Team (Cyber Security)
Scripting (Bash/Python/Go/Ruby)
GWAPT
Information Technology
Purple Team (Cyber Security)

Job description

We are seaking a consultant Penetration Tester where you'll be a critical part of our security team, tasked with proactively identifying vulnerabilities across our customers' entire technology stack to secure their systems and protect their assets. This is a role for a self-starter who excels at simulating real-world threats, doesn't give up at the first sign of failure, and is able to clearly relay testing results to technical and non-technical audiences.

Key Roles & Responsibilities

  • Deliver application, network, systems, and infrastructure penetration tests for customers
  • Prepare high quality reports detailing security issues, making recommendations, and identifying solutions, contribute to presentations and discussions with customers around testing performed, key results, recommendations, and the next steps
  • Conduct reconnaissance and gather open-source intelligence
  • Safely deploy offensive tools and techniques against authorized targets
  • Develop custom scripts and tools to enhance red team capabilities
  • Communicate findings and strategies to technical and executive stakeholders
  • Provide risk-based recommendations and support defensive teams in improving detection and response
  • Build and promote strong, long-lasting relationships with a diverse range of customers, and identify and explore opportunities within existing and new customers
  • Ensure that KPIs around client expectation management, delivery deadlines, quality of work and deliverables etc are met, including conducting quality management
  • Share knowledge and support Professional Services team members to up/cross skill in hard and soft skills
  • Assist with innovation, and practice improvement activities, under supervision

Preferred Skills:

  • Certifications such as OSCP, OSCE, OSWE, GPEN, GCIH, GWAPT, GXPN.

Requirements

Do you have experience in Security system vulnerability testing?, Do you have a Bachelor's degree?, * Bachelor's degree in Computer Science, IT, or related field, or equivalent experience.

  • 4+ years of hands-on experience in offensive security, including:
  • Network and web application penetration testing
  • Social engineering (email, phone, physical)
  • Exploit development or tool customization
  • Strong understanding of threat actor tactics, techniques, and procedures.
  • Experience with red, blue, or purple team exercises.
  • Willingness to travel for on-site assessments as needed - less than 10% travel
  • Effective communication skills, both written and verbal skills
  • Ability to adapt and thrive in a fast-paced, evolving technical landscape.
  • Proven ability to problem-solve and think critically in a fast-paced environment.

All candidates must be eligible to work in the U.S. for any employer and must be able to pass a background check.

Apply for this position