Job details

Penetration Testing Engineer

Get a free resume review

We are seeking a highly motivated and skilled Penetration Testing Engineer to join our cybersecurity team. The ideal candidate will be responsible for conducting comprehensive penetration tests on our systems, networks, and applications to identify and mitigate security vulnerabilities. You will play a crucial role in ensuring the security and integrity of our digital assets by simulating real-world cyberattacks and providing actionable recommendations for remediation.

Responsibilities:

Penetration Testing and Vulnerability Assessment:

Conduct internal and external penetration tests on web applications, mobile applications, networks, and infrastructure.
Perform vulnerability assessments and security audits to identify weaknesses and potential attack vectors.
Utilize various penetration testing tools and techniques, including manual and automated methods.
Simulate real-world attack scenarios to assess the effectiveness of existing security controls.
Perform social engineering assessments, if required.
Perform wireless network assessments.

Reporting and Remediation:

Document and report identified vulnerabilities with clear and concise descriptions, including severity levels and potential impact.
Provide detailed recommendations for remediation and mitigation strategies.
Present findings to technical and non-technical stakeholders.
Track and verify the implementation of remediation efforts.
Retest systems after patches are applied.

Security Research and Development:

Stay up-to-date with the latest security threats, vulnerabilities, and attack techniques.
Research and evaluate new penetration testing tools and methodologies.
Contribute to the development and improvement of internal security testing processes.
Contribute to the creation of security best practices.

Compliance and Standards:

Ensure all penetration testing activities comply with relevant legal, regulatory, and ethical standards.
Adhere to industry best practices and security frameworks (e.g., OWASP, NIST).
Maintain confidentiality of sensitive data.

Qualifications:

Education: Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent experience).
Experience: 3 years of experience in penetration testing or a related security role.
Technical Skills:

Proficiency in using penetration testing tools (e.g., Metasploit, Nmap, Burp Suite, Wireshark).
Strong understanding of networking protocols, operating systems (Windows, Linux), and web application architectures.
Knowledge of common web application vulnerabilities (e.g., OWASP Top 10).
Experience with scripting languages (e.g., Python, Bash, PowerShell).
Knowledge of cloud security (AWS, Azure, GCP).
Knowledge of mobile application security.

Certifications (Preferred):

Certified Ethical Hacker (CEH)
Offensive Security Certified Professional (OSCP)
GIAC Penetration Tester (GPEN)
CISSP

Soft Skills:

Strong analytical and problem-solving skills.
Excellent communication and interpersonal skills.
Ability to work independently and as part of a team.
Strong ethical principles and a commitment to confidentiality

Average salary estimate

$100000 / YEARLY (est.)

min

max

$80000K

$120000K

If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.

What You Should Know About Penetration Testing Engineer, SWATX

We are excited to announce an opening for a Penetration Testing Engineer at our innovative cybersecurity company! If you’re a highly motivated individual passionate about defending against cyber threats, this role is for you. As a Penetration Testing Engineer, you will be at the forefront of safeguarding our digital assets by conducting thorough penetration tests across our systems, networks, and applications. Your primary mission will be to identify and mitigate security vulnerabilities, ensuring we stay ahead of potential attackers. You will simulate real-world cyberattacks using both manual and automated techniques, providing us with invaluable insights and actionable recommendations for improvement. Daily tasks may include performing vulnerability assessments, documenting findings, and collaborating with both technical and non-technical stakeholders to present your recommendations. Staying current with the latest security threats and tools is crucial, as you'll also contribute to developing best practices that enhance our security processes. Ideally, you will have a Bachelor’s degree in Computer Science or a related field, along with at least three years of experience in penetration testing or a similar security role. If you're proficient with tools like Metasploit and have a strong grasp of networking protocols, web application architectures, and common vulnerabilities, we'd love to hear from you. Join us to make a meaningful impact on the security landscape!

Frequently Asked Questions (FAQs) for Penetration Testing Engineer Role at SWATX

What are the main responsibilities of a Penetration Testing Engineer at the cybersecurity company?

The main responsibilities of a Penetration Testing Engineer at our cybersecurity company include conducting penetration tests on web and mobile applications, networks, and systems. You’ll perform vulnerability assessments, simulate real-world attack scenarios, and track remediation efforts. Additionally, clear documentation of vulnerabilities and presenting findings to stakeholders are key aspects of this role.