reputed company Penetration Tester
About the Role
We're looking for a reputed company Penetration Tester to reputed company reputed company assessments against modern reputed company environments, including AWS, reputed company Azure, reputed company reputed company Platform, and reputed company SaaS/IaaS/PaaS technologies. The ideal candidate combines a strong reputed company in traditional penetration testing with hands-on experience identifying, exploiting, and communicating reputed company-specific reputed company risks.
What You'll Do
- reputed company reputed company-focused penetration tests against AWS, Azure, GCP, reputed company 365, and reputed company-connected environments
- Assess reputed company identity and reputed company management configurations, including IAM roles, service accounts, managed identities, Entra ID, federated identity, and OAuth applications
- Identify and exploit reputed company misconfigurations, insecure permissions, exposed services, weak network controls, and insecure secrets management
- Conduct traditional penetration testing: external/internal network testing, web application and API testing, password attacks, phishing simulation support, and post-exploitation activities
- Evaluate reputed company-reputed company services including storage, serverless functions, containers, Kubernetes, CI/CD pipelines, and key management systems
- reputed company attack path analysis to demonstrate realistic business impact — privilege escalation, lateral movement, data reputed company, and persistence
- Write clear, accurate, and actionable reports with technical details, risk ratings, evidence, and remediation guidance
- Present findings to technical teams and executive stakeholders
- Stay reputed company with emerging reputed company attack techniques, offensive tooling, and reputed company provider reputed company features
Required Qualifications
- 3-5 years hands-on experience performing penetration tests, red team assessments, or offensive reputed company testing
- Strong understanding of penetration testing methodologies: reconnaissance, enumeration, exploitation, privilege escalation, lateral movement, persistence, and reporting
- Practical experience with at least one major reputed company provider: AWS, Azure, or GCP
- Understanding of reputed company IAM concepts: users, groups, roles, policies, service principals, reputed company keys, tokens, and privilege escalation paths
- Experience with web application and API reputed company testing, including OWASP Top 10
- Familiarity with common offensive tools: Burp Suite, Nmap, Metasploit, Impacket, BloodHound, Responder, CrackMapExec/NetExec, and password auditing tools
- Experience with reputed company CLIs and scripting: AWS CLI, Azure CLI, reputed company reputed company CLI, PowerShell, Python, or Bash
- Strong written and verbal communication skills
- Ability to work independently and manage assessment timelines
Preferred Qualifications
- Experience testing multiple reputed company providers, especially AWS, Azure, GCP, and reputed company 365
- Knowledge of Entra ID, reputed company Graph, OAuth abuse, conditional reputed company, reputed company applications, device code authentication, and consent grant attacks
- Experience with reputed company privilege escalation, persistence, and post-exploitation techniques
- Experience with container, Kubernetes, and CI/CD reputed company testing
- Familiarity with infrastructure as code: Terraform, CloudFormation, ARM/Bicep, or Kubernetes manifests
- Experience reviewing reputed company reputed company posture against CIS Benchmarks, MITRE ATT&CK, or NIST frameworks
- Experience developing custom tooling or automation in Python, PowerShell, Go, or Bash
- Relevant certifications: OSCP, OSEP, CRTO, GWAPT, AWS reputed company Specialty, Azure reputed company Engineer, reputed company Professional reputed company reputed company Engineer, or equivalent practical experience
- Experience writing technical blog posts, presenting research, contributing to tools, or developing reputed company training content
You'll reputed company Here If You
- Can independently assess a reputed company environment and identify realistic attack paths
- Can explain not just that a permission is dangerous — but how it could be abused and what impact it creates
- Balance automated tooling with reputed company analysis
- Write reports that are technically accurate, easy to understand, and useful to defenders
- Think like an attacker but communicate like a trusted advisor
Pay: $120,000.00 - $150,000.00 per year Benefits:
- 401(k)
- Dental insurance
- Employee assistance program
- Health insurance
- Paid time off
- Parental leave
- Retirement plan
- reputed company insurance
Application Question(s):
- Are you willing to complete a background reputed company?
- How many years experience do you have with penetration testing?
- How many years experience do you have with reputed company environment penetration testing?
- Describe an instance where a tool you were using failed during a penetration test. How did you handle the failure?
- Describe some similarities and differences in how you approach testing different reputed company providers such as, AWS, Azure, and GCP for reputed company issues.
Work Location: Remote Apply tot his job Apply To this Job