Penetration Tester Analyst

Key Role:

Apply expertise in all aspects of malware reverse engineering, offensive thinking or planning, intelligence analysis, penetration testing, tool or exploit development, social engineering, networking, operating systems, and technical architectures. Leverage verbal and written communication expertise when conducting customer-facing and teaming work on an everyday basis. Plan and analyze attacks on internally or externally hosted applications and infrastructure on a global scale with an emphasis on critical functions targeted by adversaries. Design and develop scripts, frameworks, tools, and the methods required for facilitating and executing complex attacks and emulating adversarial Tactics, Techniques, and Procedures (TTPs). Interpret the impact on the business area's operations, systems, and processes with key fringe stakeholders. Ensure effective knowledge management of findings and review the results of an attack campaign to determine the severity of findings and identify potential remediation or mitigation strategies.

Basic Qualifications:

  • 4+ years of experience with network vulnerability assessments, web application security testing, network penetration testing, or red teaming 
  • Experience with programming languages, including Perl, Python, Ruby, bash, or Java
  • Knowledge of applications, database, or web server design
  • BA or BS degree

 Additional Qualifications:

  • Experience in coordinating, working with, and gaining the trust of business stakeholders, technical resources, and third-party vendors
  • Experience with leading meetings, dividing responsibilities, and influencing people to take action to assist with the resolution of security incidents
  • Experience with conducting in-depth research of the latest adversarial TTPs and technologies to remain at the bleeding edge
  • Experience with identifying and mitigating security vulnerabilities in operating systems and web applications
  • Ability to travel to support security testing work, as needed

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.

Not ready to apply? Join our talent community and sign up for job alerts.