Penetration Tester

Wolf is seeking a Penetration Tester to join our growing and well-established national firm.  As a Penetration Tester, you will help support the DenSecure team through a variety of tasks related to delivering and enhancing various security services provided to our clients. The successful candidate possesses strong communication skills, has a desire to be challenged in a dynamic work environment, and is looking to find a place to continue their career within a rapidly growing team.  

Our testing is primarily manual, hands-on-keyboard work that does not rely on commercial scanning tools or automated exploitation of any kind. While an important skill, if your previous testing role primarily involved running a scanner combined with Metasploit or another automated tool this role may be a challenge for you. 

DenSecure testers all contribute to the day to day operations of the team. A successful candidate will be willing to perform both client and non-client facing tasks, including but not limited to: report writing, testing equipment maintenance, setup, distribution to clients, and internal projects that arise that the team needs hands for. This is not a role for candidates that seek to work as individuals that do not have to interface with others daily. 

Responsibilities:  

• Communicate testing approach, methodology, scope, findings, reports, and other relevant information to clients in a professional manner in both written and spoken form. 
• Write penetration test reports and other documents in a professional tone and for the appropriate audience. 
• Perform a variety of security assessments, including assumed breach (internal), external, and social engineering to include phishing, vishing, and physical testing. 
• Maintain knowledge of latest tactics, techniques, and procedures for testing during engagements and maintenance of client security posture 

Necessary Qualifications:  

• Must have 1-2 years of working experience exclusively in penetration testing in a client facing role (this is an absolute must to be considered). This experience must involve testing in corporate production environments 
• Familiarity with open source tools used to target production environments (i.e. Impacket, BloodHound, CrackMapExec, etc.) 
• Be willing to learn from and teach others  
• Strong personal time management skills (maintaining ownership of tasks, timelines, responsibilities, deadlines, etc.) 
• Strong English communication skills (written and oral) – you will be required to present report findings during meetings with C-Suite and upper management roles  

Preferred candidates will have the following additional qualifications:

• OSCP or other information security certifications that prove “hands on keyboard” knowledge (we value proven technical skills over certifications) 
• Write for or own a technical blog  
• Have ongoing projects that can enhance the team’s skill set  
• Maintaining “red” team infrastructure used for C2 and social engineering  

Wolf & Company, P.C. is committed to striving to be an employer of choice that embraces inclusion & diversity. At Wolf, the strength of our team is measured by the uniqueness of each and every one of us. Our culture of inclusion and diversity celebrates our differences and recognizes the ongoing need to build a welcoming, collaborative, and supportive environment where our people can be their authentic selves and thrive.  We strive for diversity inclusive of race, ethnicity, gender identity, gender expression, sex, age, color, religion, sexual orientation, physical abilities, education, social classes, veteran status, and so much more.  

The salary range for this position is $75,000 - $135,000

Actual compensation within the range will be dependent upon the individual's skills, experience, qualifications and location, and applicable employment laws. In addition to base pay, you may be eligible to participate in our performance-based incentive compensation or sales commission plans. In addition, Wolf offers a wide range of benefits including spot awards, 401(k) savings, flexible work, and a generous total rewards and benefits package.