Penetration Tester

OSEC

$90K — $120K *
US-AnywhereRemote in New York, NY
Information Technology
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • 2-3 years of professional experience in penetration testing or similar roles.
  • Proficient in AWS services such as EC2, S3, and RDS; knowledge of Azure & GCP is a plus.
  • Skilled in conducting penetration tests across various platforms including APIs, mobile, cloud, and web applications.
  • Familiarity with scripting languages like Python, Perl, Go, or Ruby.
  • Experience using penetration testing tools across different environments.
  • Solid understanding of networking concepts and protocols, including IP addressing and security practices.
  • Strong written and verbal communication skills for drafting detailed security assessment reports.

Responsibilities

  • Conduct security audits and penetration tests across networks and applications.
  • Draft detailed security assessment reports, presenting findings and evidence clearly.
  • Employ social engineering techniques to enhance security awareness and education.
  • Advise clients on mitigating security risks and improving their network security posture.
  • Collaborate with team members on complex security projects, ensuring comprehensive coverage.
  • Work independently on defined projects with Project Manager oversight.
  • Stay current with security tools and practices to maintain high competency levels.

Benefits

  • Flexible working hours for better work-life balance.
  • Access to competitive health insurance packages.
  • Life insurance coverage for peace of mind.
  • 401k plan with company contributions for retirement savings.
  • Maternity and parental leave to support family growth.
  • On-the-job training to enhance skills and career development.
  • Paid, flexible vacation allowing for personal time when needed.
Full Job Description
The Penetration Tester is responsible for working as part of the Assessment Team to conduct and participate in offensive and defensive security projects for OccamSec and its clients. This individual will work as part of a security team and report to an Assessment Team Lead.

Job Responsibilities:
  • Conduct security audits, network penetration tests, and web application, API and cloud assessments.
  • Draft security assessment reports that outline findings and provide a walkthrough of the assessment performed with evidence provided appropriately.
  • Use social engineering to identify improvement for security awareness and education.
  • Provide guidance and recommendation to clients on ways to fix or reduce security risks to their networks and products.
  • Operate as part of a team on larger, more complex projects with oversight from senior team members.
  • Operate independently on projects within defined-skill set, with oversight from a Project Manager.
  • Maintain proficiency in current security tools and skills.

Experience:

  • Candidates with at least 2-3 years of professional experience are preferred.
  • Proficient in working with AWS services like EC2, S3, KMS, RDS, or similar services on Azure & GCP, with a focus on implementing security best practices.
  • Skilled in conducting penetration tests for API, Mobile, Cloud, and Web Applications.
  • Familiarity with scripting languages such as Python, Perl, Go or Ruby.
  • Hands-on experience in building or developing Server or Application Technologies.
  • Utilized penetration tools effectively in various scenarios.
  • Applied expertise in replicating threat behaviors.
  • Proficient in using packet analyzer tools like Wireshark and tcpdump.
  • Sound understanding of IP network protocols, sub-netting, routing, switching, etc.
  • Extensive background in penetrating and exploiting secure networks and systems, staying updated with the latest security software packages, protocols, and computer technologies.
  • Excellent written and oral communication skills, with a proven track record in generating comprehensive reports and assessments.

Benefits
  • Flexible working hours;
  • Competitive health packages;
  • Life insurance;
  • 401k plan with company contributions
  • Maternity and parental leave;
  • On-the-job training opportunities; and
  • Paid, flexible vacation.

Similar Jobs

More Jobs at OSEC

More Information Technology Jobs

Find similar Penetration Tester jobs: