Senior Penetration Tester

Company Overview

AppSecure.Security is a premier cybersecurity firm dedicated to helping organizations identify and address vulnerabilities in their systems.

Job Summary

The Senior Penetration Tester will lead impactful security assessments across diverse platforms, conducting comprehensive penetration tests, and collaborating with clients and internal teams to enhance overall security posture. This role is integral to advancing the security efforts of our clients and contributes to the organization’s goals of providing exemplary cybersecurity services.

Responsibilities

• Conduct comprehensive penetration tests on web applications, mobile apps, APIs, and networks.
• Lead red teaming engagements to simulate real-world attack scenarios and evaluate security defenses.
• Perform vulnerability assessments and deliver actionable remediation guidance.
• Research and exploit vulnerabilities to demonstrate risks and potential impacts.
• Prepare detailed technical reports and executive summaries outlining findings and recommendations.
• Collaborate with clients and internal teams to enhance overall security posture.
• Stay up to date on the latest security trends, vulnerabilities, and tools.
• Contribute to improving internal methodologies and toolsets.
• Mentor junior team members and provide guidance on complex projects.

Qualifications

• Experience: At least 3 years in penetration testing, covering web, mobile, API, and network environments.
• Certifications: Hold at least one of the following:
  • OSCP (Offensive Security Certified Professional)
  • OSWE (Offensive Security Web Expert)
  • CREST CRT (Certified Registered Tester)
  • Other relevant certifications are a plus.
• Technical Skills:
  • Proficiency with security tools and frameworks (e.g., Burp Suite, Metasploit, Kali Linux).
  • Expertise in manual testing techniques and exploitation methods.
  • Strong knowledge of OWASP Top 10, SANS Top 25, and the MITRE ATT&CK framework.
  • Experience with scripting and automation (e.g., Python, Bash, PowerShell).
• Red Teaming Expertise: Proven experience in red teaming and advanced attack simulations.
• Bug Bounty Programs: Success in bug bounty programs is a significant advantage.
• Excellent problem-solving skills and attention to detail.
• Strong written and verbal communication skills.

Preferred Skills

• Additional relevant cybersecurity certifications.
• Experience with cloud security assessments.
• Familiarity with security compliance standards (e.g., ISO 27001, NIST).

Experience

Minimum of 3 years in penetration testing and related cybersecurity roles.

Environment

• Flexible Work Environment: Remote-first culture with flexible hours.
• Supportive Culture: A collaborative and encouraging team environment.

Salary

Not specified.

Growth Opportunities

Opportunities for professional growth through access to training resources and certifications for career development.

Benefits

• Competitive compensation package.
• Opportunities to work on challenging projects in cutting-edge cybersecurity initiatives.

How to Apply

If you’re ready to take the next step in your cybersecurity career, apply now by sending your resume and a cover letter to careers@appsecure.security. Include examples of previous engagements or notable achievements, if applicable. Join us at AppSecure.Security and make a real impact in securing the digital world!