Penetration Tester

Job Description

Please no 3rd parties or C2C.
Must be a US Permanent Resident or Citizen.
We are unable to sponsor currently.

Job Title: Penetration Tester
Location: United States (Hybrid or On-site, depending on business needs)
Job Type: Full-time, direct hire
Salary Range: $100,000 – $150,000 annually depending on experience

About the Role

A security-focused organization is seeking an experienced Penetration Tester to join a dedicated offensive security function. This role is ideal for a hands-on ethical hacker who excels at identifying real-world vulnerabilities, emulating adversary behavior, and helping organizations meaningfully improve their security posture. The position focuses on advanced penetration testing across enterprise networks, applications, cloud platforms, and human-centric attack vectors, with a strong emphasis on translating technical findings into clear, risk-based insights for both technical and business stakeholders.

Key Responsibilities

• Execute penetration tests across network, web application, API, and cloud environments using established industry methodologies and frameworks.

• Perform internal network and directory service assessments, including privilege escalation, lateral movement, persistence, and data access simulations.

• Design and conduct social engineering engagements such as phishing, smishing, or voice-based attacks when in scope.

• Analyze, document, and present findings with appropriate technical depth and clear business impact.

• Support remediation efforts by explaining exploit chains, root causes, and practical mitigation strategies aligned with best practices.

• Research emerging threats, attack techniques, and offensive security tools to stay ahead of evolving risk.

• Contribute to the enhancement of testing methodologies, internal tooling, and automation initiatives.

Qualifications

Education

• Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or a related field preferred; equivalent experience will be considered.

Experience

• Minimum of 3 years of hands-on experience in penetration testing, red teaming, or offensive security roles.

• Proven experience conducting end-to-end security assessments across diverse environments.

Technical Skills

• Strong proficiency with common offensive security tools for reconnaissance, exploitation, and post-exploitation.

• Solid understanding of networking concepts, operating systems, web technologies, and modern cloud architectures.

• Experience producing professional, risk-focused reports with actionable remediation guidance.

Certifications

• Hands-on security certifications strongly preferred (e.g., advanced offensive or exploitation-focused credentials).

Soft Skills

• Ability to communicate effectively with both technical teams and non-technical stakeholders.

• Strong analytical mindset with attention to detail and a practical, solution-oriented approach.

Why Join Us?

• Work on complex, high-impact security assessments across a variety of industries and environments.

• Collaborate with seasoned offensive security professionals in a technically mature organization.

• Focus on real-world risk and adversary simulation rather than checklist-driven testing.

• Enjoy a culture that values technical excellence, autonomy, and continuous learning.

• Competitive compensation, performance incentives, and ongoing professional development support.

ISSI Technology Professionals celebrates diversity. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.