Penetration Tester

Summary

Join UltraViolet Cyber, a leading platform-enabled unified security operations company, as an experienced Penetration Tester. You will conduct penetration tests on web applications, networks, and cloud environments, simulating attacks to identify vulnerabilities. Assess target systems, exploit vulnerabilities safely, and communicate risks effectively to clients. This role requires collaboration with clients and utilizing various penetration testing tools and methodologies. You will also automate red teaming and penetration testing techniques. US Citizenship and the ability to pass a government background check are required.

Requirements

• Bachelor’s Degree in Cybersecurity or related field preferred
• At least 2 years of experience related to conducting penetration tests or red-team assessments

Responsibilities

• Conduct web application, Application Programming Interface (API), network, and cloud penetration tests
• Use common penetration testing and red-team tools, tactics, techniques, and procedures
• Analyze Proof of Concept (PoC) exploits to understand the underlying vulnerability and tailor the PoC to be safely used in target space
• Automate Red Teaming and Penetration Testing techniques, to efficiently scale offensive operations, using common scripting and programing languages (e.g. Golang, Python, JavaScript, Bash, PowerShell, etc.)
• Conduct security assessments of cloud environments and application source code review
• Conduct penetration tests in accordance with standard methodologies (i.e. OWASP, NIST, PTES)
• Utilize custom penetration testing tools, frameworks, and infrastructure
• Assess risk of discovered vulnerabilities based on likelihood and severity of exploitation
• Document and deliver technical reports on detailed findings and vulnerability remediation recommendations
• Collaborate with clients throughout an assessment on status and vulnerability information
• Evolve our capabilities and toolset
• Penetration Testing in three (3) or more of the following
• Web Applications
• External Networks
• Internal Networks
• Active Directory
• Cloud Environments (e.g. AWS, Azure, GCP)

Preferred Qualifications

Offensive Security Certified Professional (OSCP) preferred but not required: OSCP experience and knowledge is highly preferred

Benefits

• 401(k), including an employer match of 100% of the first 3% contributed and 50% of the next 2% contributed
• Medical, Dental, and Vision Insurance (available on the 1st day of the month following your first day of employment)
• Group Term Life, Short-Term Disability, Long-Term Disability
• Voluntary Life, Hospital Indemnity, Accident, and/or Critical Illness
• Participation in the Discretionary Time Off (DTO) Program
• 11 Paid Holidays Annually