Sr Penetration Tester

The Sr Penetration Tester is responsible for leading and executing advanced offensive security assessments across a variety of environments including networks, applications, cloud platforms, and physical systems. This role requires a blend of deep technical expertise and strategic vision to help build and scale the penetration testing practice within the organization. The individual will collaborate with internal teams and external clients, mentor junior staff, and contribute to the development of methodologies, tooling, and service offerings. This position is ideal for someone who thrives in a hands?on role while also influencing the direction and growth of a core cybersecurity function.

ESSENTIAL FUNCTIONS

• Perform penetration testing engagements across diverse environments (network, application, cloud, physical).
• Develop and maintain testing methodologies, tools, and reporting standards.
• Deliver detailed, actionable findings and remediation guidance to technical and non?technical stakeholders.
• Collaborate with clients and internal teams to define engagement scope and objectives.
• Stay current with emerging threats, vulnerabilities, and offensive security techniques.
• Mentor and train junior penetration testers.
• Assist in building and scaling the penetration testing practice : define service offerings and delivery models; establish operational processes and tooling; support business development and client engagement; contribute to hiring and team growth strategies.
• Perform other duties as assigned.

POSITION REQUIREMENTS

Minimum Education / Experience : Bachelors degree in Computer Science, Information Security, or a related field from an accredited college or university plus a minimum of 5 years of hands?on penetration testing experience; alternatively, a high school diploma or equivalent plus a minimum of 10 years of penetration testing experience.

Certifications : OSCP or GPEN required. OSEP, OSCE, CRTP or CRT or equivalent advanced certifications preferred.

Company / Industry Knowledge : Experience working in or with cloud service providers, SaaS environments, or enterprise IT infrastructures. Prior experience in banking, credit union, or financial services industries is strongly preferred. Familiarity with regulatory frameworks and compliance standards (e.g., PCI?DSS, GLBA, FFIEC, NIST, ISO 27001).

SKILLS / ABILITIES

PREFERRED QUALIFICATIONS

#J-18808-Ljbffr