Penetration Tester

OSEC

$90K — $130K *
Information Technology
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • 2-3 years of professional experience preferred.
  • Proficient in AWS services (EC2, S3, etc.) and security best practices.
  • Skilled in penetration testing for API, Mobile, Cloud, and Web Applications.
  • Familiarity with scripting languages such as Python, Perl, Go, or Ruby.
  • Hands-on experience in building or developing Server/Application Technologies.
  • Experienced with penetration tools for various scenarios.
  • Proficient in using packet analyzers like Wireshark and tcpdump.

Responsibilities

  • Conduct security audits and penetration tests on networks and applications.
  • Draft detailed security assessment reports with findings and evidence.
  • Use social engineering to enhance security awareness and education.
  • Provide clients with guidance to reduce security risks effectively.
  • Collaborate on complex projects with senior team oversight.
  • Work independently on defined-skill projects under a Project Manager.
  • Stay updated on current security tools and skills.

Benefits

  • Flexible working hours
  • Competitive health packages
  • Life insurance
  • 401k plan with company contributions
  • Maternity and parental leave
  • On-the-job training opportunities
  • Paid, flexible vacation
Full Job Description
The Penetration Tester is responsible for working as part of the Assessment Team to conduct and participate in offensive and defensive security projects for OccamSec and its clients. This individual will work as part of a security team and report to an Assessment Team Lead.

Job Responsibilities:
  • Conduct security audits, network penetration tests, and web application, API and cloud assessments.
  • Draft security assessment reports that outline findings and provide a walkthrough of the assessment performed with evidence provided appropriately.
  • Use social engineering to identify improvement for security awareness and education.
  • Provide guidance and recommendation to clients on ways to fix or reduce security risks to their networks and products.
  • Operate as part of a team on larger, more complex projects with oversight from senior team members.
  • Operate independently on projects within defined-skill set, with oversight from a Project Manager.
  • Maintain proficiency in current security tools and skills.

Experience:

  • Candidates with at least 2-3 years of professional experience are preferred.
  • Proficient in working with AWS services like EC2, S3, KMS, RDS, or similar services on Azure & GCP, with a focus on implementing security best practices.
  • Skilled in conducting penetration tests for API, Mobile, Cloud, and Web Applications.
  • Familiarity with scripting languages such as Python, Perl, Go or Ruby.
  • Hands-on experience in building or developing Server or Application Technologies.
  • Utilized penetration tools effectively in various scenarios.
  • Applied expertise in replicating threat behaviors.
  • Proficient in using packet analyzer tools like Wireshark and tcpdump.
  • Sound understanding of IP network protocols, sub-netting, routing, switching, etc.
  • Extensive background in penetrating and exploiting secure networks and systems, staying updated with the latest security software packages, protocols, and computer technologies.
  • Excellent written and oral communication skills, with a proven track record in generating comprehensive reports and assessments.

Benefits
  • Flexible working hours;
  • Competitive health packages;
  • Life insurance;
  • 401k plan with company contributions
  • Maternity and parental leave;
  • On-the-job training opportunities; and
  • Paid, flexible vacation.

Similar Jobs

More Jobs at OSEC

More Information Technology Jobs

Find similar Penetration Tester jobs: