Senior Penetration Tester Consultant

This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Senior Penetration Tester Consultant in the United States.

This role is focused on strengthening the cybersecurity posture of enterprise clients by performing advanced penetration tests, vulnerability assessments, and social engineering exercises. You will operate across multiple environments, including network, web, mobile, and cloud systems, to identify weaknesses and provide actionable recommendations. The position requires hands-on technical expertise, strong scripting and programming skills, and the ability to deliver high-quality reports. You will work closely with clients to guide them through security improvements while collaborating with internal teams to ensure best practices are applied. The environment is fast-paced, security-focused, and offers opportunities to develop innovative testing methodologies. Your work will directly impact the protection of critical systems and data across a diverse range of industries.

• Accountabilities
• Execute internal, external, wireless, mobile, and web application penetration tests.
• Conduct social engineering assessments, including phishing, vishing, and physical security tests.
• Perform vulnerability scans and security assessments across multiple platforms.
• Develop, write, and deliver high-quality client reports with actionable insights.
• Automate and facilitate testing processes using scripting languages like Python and Bash.
• Reimage and configure devices and virtual machines to support testing activities.
• Collaborate with clients and internal teams to improve overall cybersecurity practices.
• 
  
• Requirements
• Bachelor’s or Master’s degree in Cybersecurity, Information Systems, Computer Science, or related field.
• Minimum 5 years of experience in penetration testing and vulnerability assessments across diverse systems.
• Strong programming and scripting skills (Python, Ruby, Perl, C, C++, Java, C#, Bash, PowerShell).
• Proficiency with Windows and Linux operating systems.
• Familiarity with cloud environments (AWS, Azure, Google Cloud, AliCloud, Rackspace) and their security controls.
• Knowledge of SOAP/REST/JSON web APIs and associated testing methodologies.
• Hands-on experience with standard security tools (Nmap, Metasploit, Burp Suite, Nessus, Nikto, SSLStrip, Scapy).
• Preferred experience in Security Operations, Incident Response, Red Teaming, or Forensics.
• Required certifications: OSCP/eCPPT or eWPT; additional certifications such as GWAPT, GPEN, PenTest+, GXPN preferred.
• Excellent communication skills, ability to work independently or collaboratively, and a strong security-focused mindset.
• 
  
• Benefits
• Comprehensive healthcare, dental, and vision coverage.
• Employer-paid life insurance and disability coverage.
• Employee Assistance Program (EAP) and pet insurance.
• 401(k) plan with employer matching.
• Competitive bonus structure and technology allowance.
• Certification reimbursement and personalized career coaching.
• Generous paid time off, vacation bonus, and summer hours.
• Paid office closure from December 25–January 1.

Why Apply Through Jobgether?

We use an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. Our system identifies the top-fitting candidates, and this shortlist is then shared directly with the hiring company. The final decision and next steps (interviews, assessments) are managed by their internal team.

We appreciate your interest and wish you the best!

 Why Apply Through Jobgether? 

Data Privacy Notice: By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. This processing is based on legitimate interest and pre-contractual measures under applicable data protection laws (including GDPR). You may exercise your rights (access, rectification, erasure, objection) at any time.

#LI-CL1