Penetration Tester

Marathon TS

$90K — $120K *
Information Technology
5 - 7 years of experience
Job Overview by Ladders

Qualifications

  • 5+ years of professional experience in Information Technology security or equivalent experience.
  • Advanced knowledge of security systems analysis, testing, and documentation.
  • Experience with network operating systems, data encryption methods, and virtual environments.
  • Hands-on expertise with communication protocols, firewall implementation, and advanced malware detection systems.
  • Familiarity with TCP/IP, NetFlow, and network security fundamentals.
  • Proficiency with security tools such as NetWitness, FireEye, and Splunk; scripting experience a plus.
  • Strong verbal and written communication skills; critical thinking and attention to detail.

Responsibilities

  • Lead penetration assessments for identifying security risks and vulnerabilities.
  • Test a range of systems, including web applications, network infrastructure, and mobile deployments.
  • Conduct hands-on testing and technical debriefs on activities and outcomes.
  • Execute Red Team Cyber operations simulating adversary tactics.
  • Effectively communicate findings and remediation strategies to stakeholders.
  • Perform other duties as assigned.

Benefits

  • Opportunities for professional development and certifications.
  • Access to advanced security tools and technologies.
  • Collaboration with seasoned professionals in Cybersecurity.
  • Structured environment conducive to both independent and team work.
Full Job Description
Our Client is seeking Penetration Tester to help ensure the continued operation of the systems that protect a client's network against unauthorized access, modification of data, and malicious activity. These systems require continuous management and monitoring to ensure they are functioning as expected and to analyze and respond to alerts as they occur.

Responsibilities

  • Lead enterprise and system-focused network and application penetration assessments to identify security risks and vulnerabilities.
  • Perform testing on a wide scope of systems, including Web applications, security controls, network infrastructure, wireless, and mobile deployments.
  • Conduct hands-on technical testing beyond the use of automated tool validation. Plan, execute, report, and lead technical debriefs on testing activities and outcomes.
  • Execute covert Red Team Cyber operations to mimic adversary tactics and work closely in a Purple Team to test exploits needed to build detections.
  • Communicate findings and remediation strategies effectively to stakeholders, including technical staff and executive leadership.
  • OSCP, GPEN or GXPN certification preferred.
  • Perform other official duties as assigned.


Qualifications

  • Demonstrated experience and advanced knowledge of security systems analysis, testing, and documentation
  • Knowledge of virtual environments, network operating systems, mobile device environments, and data encryption methods
  • Demonstrated expertise in communication protocols, network operating systems, servers, firewall implementation, IPS/IDS systems, and advanced malware detection systems
  • Demonstrated knowledge of TCP/IP, network fundamental, network security, NetFlow and knowledge of tools such as Wireshark.
  • Demonstrated knowledge of NetWitness , FireEye, Splunk, AWS Direct Connect, Checkpoint/Barracuda Firewalls, StealthWatch , ThreatConnect, O365, Bro, WS/AZURE Security Onion, Gigamon, and VMware. Experience with scripting languages such as Perl a plus.
  • Exceptional communication skills, both verbally and written
  • Strong attention to detail
  • bility to work alone and in team environments
  • Critical thinking skills
  • Flexibility/Adaptability

Level of Education: Bachelors or above rea(s) of Concentration :

Bachelor's degree in computer related field plus 5 years of professional experience or equivalent work experience is required for each position. In lieu of a bachelor's degree, proposed staff should have at least eight (8) years of Information Technology security experience

Certifications Preferred :

CISSP, GIAC, CCE, ECIH, CEH.

Similar Jobs

More Jobs at Marathon TS

More Information Technology Jobs

Find similar Penetration Tester jobs: