Conduct penetration testing, vulnerability scanning, and manual testing to identify security risks and provide actionable recommendations. Collaborate with stakeholders to deliver comprehensive reports. 5+ years of experience in penetration testing, vulnerability assessment, or application security required.
Key Highlights
Key Responsibilities
Technical Skills Required
Nice to Have
Job Description
**NO 3rd Parties or Sponsorship!
Role Title: Penetration Tester Consultant
Duration: 1 week sprints
Preferred Location: Remote, US
Role Description:
We are seeking an experienced Penetration Tester to support enterprise-level network and web application security assessments. This individual will be responsible for executing vulnerability scans, performing targeted manual testing, validating findings, and delivering clear, actionable reports outlining identified risks and remediation recommendations. This role requires a balance of technical execution and strong communication skills to translate findings into business impact.
This engagement offers the opportunity to work within a growing security program, with potential for continued work across additional assessments, expansion into other security initiatives, and long-term opportunities supporting additional teams and clients.
Responsibilities:
- Conduct external and internal network penetration testing across multiple subnets and IP ranges (up to ~750 internal / 300 external IPs)
- Perform web application security testing using tools such as Burp Suite across applications (~150 pages, multiple user roles)
- Execute and manage automated vulnerability scans using tools like Nessus
- Validate and analyze scan results to eliminate false positives and prioritize real risks
- Perform manual testing techniques where needed to confirm and expand on findings
- Document vulnerabilities with clear descriptions, business impact, severity ratings, and remediation recommendations
- Develop and deliver comprehensive, client-ready assessment reports
- Collaborate with internal stakeholders to align on scope, timelines, and deliverables
- Communicate findings effectively to both technical and non-technical audiences
Interested in remote work opportunities in QA & Testing? Discover QA & Testing Remote Jobs featuring exclusive positions from top companies that offer flexible work arrangements.
Requirements:
- 5+ years of experience in penetration testing, vulnerability assessment, or application security
- Hands-on experience with Nessus (or similar vulnerability scanners) and Burp Suite
- Strong understanding of OWASP Top 10 vulnerabilities and common network/application security flaws
- Experience validating vulnerabilities and distinguishing false positives
- Ability to perform light manual exploitation and validation of findings
- Strong experience writing clear, structured, and professional security reports
- Familiarity with HTTP/HTTPS protocols, authentication mechanisms, and session management
- Strong communication and stakeholder interaction skills
Browse our curated collection of remote jobs across all categories and industries, featuring positions from top companies worldwide.
Preferred Qualifications
- Experience with mobile security testing (iOS/Android)
- Experience with cloud environments (AWS, Azure, GCP)
- Exposure to wireless security testing
- Exposure to AI/LLM-related security concepts
- Relevant certifications such as CEH, Security+, or similar
Similar Jobs
Explore other opportunities that match your interests
RAZOR
aamc
