Senior Penetration Tester

About the Job

Title: Penetration Tester

Location: Fully Remote

Employment Type: Contract

Duration: 3+ Months

Status: Accepting Candidates

About the Role

Seeking an experienced Penetration Tester to lead offensive security engagements across enterprise environments, applications, cloud platforms, and emerging AI technologies. This role will focus on identifying security vulnerabilities, conducting adversary simulations, developing security automation tools, and delivering actionable risk assessments to stakeholders.

Key Responsibilities

• Lead penetration testing engagements across network, web application, cloud, and social engineering domains.

Interested in remote work opportunities in QA & Testing? Discover QA & Testing Remote Jobs featuring exclusive positions from top companies that offer flexible work arrangements.

• Perform adversary emulation, assume-breach assessments, and purple team exercises.
• Develop AI-powered offensive security tools, automation frameworks, and autonomous testing solutions.
• Build and maintain offensive security tooling using Python, Go, C/C++, and cloud-native technologies.
• Conduct cloud security assessments across AWS, Azure, GCP, Kubernetes, and containerized environments.
• Utilize MITRE ATT&CK methodologies and adversary simulation frameworks to evaluate organizational defenses.
• Perform AI/ML security testing, including prompt injection, model manipulation, and AI application security assessments.
• Prepare executive-level reports and communicate technical findings as business risks and remediation recommendations.
• Contribute to offensive security research, tooling repositories, and security infrastructure improvements.
• Collaborate with security architects, engineering teams, and leadership on security strategy and threat analysis.

Qualifications

• 5+ years of experience in penetration testing, red teaming, or offensive security.
• Strong knowledge of network, application, cloud, and infrastructure security testing methodologies.
• Hands-on experience with Python, Go, C/C++, or similar programming languages.
• Experience conducting cloud security assessments in AWS, Azure, or GCP environments.
• Familiarity with Kubernetes, containers, CI/CD pipelines, and cloud-native technologies.
• Strong understanding of MITRE ATT&CK, adversary emulation, and threat modeling concepts.
• Experience with AI/ML security testing, prompt injection assessments, or LLM security is highly preferred.
• Excellent written and verbal communication skills with the ability to present findings to technical and executive audiences.
• Relevant certifications such as OSCP, OSEP, OSWE, GPEN, GXPN, or similar are preferred.