Senior Penetration Tester (Remote)

This position is posted by Jobgether on behalf of a partner company. We are currently looking for a SENIOR PENETRATION TESTER in Virginia (USA).

This role offers a hands-on opportunity for a Senior Penetration Tester to lead advanced security assessments across cloud, network, web, and mobile environments. You will perform penetration tests, threat hunting, and social engineering campaigns while producing client-ready deliverables and actionable security recommendations. The position involves developing testing frameworks, training teams, and performing QA on reports and rules of engagement.

You will also contribute to thought leadership by producing research and blog content and managing the team’s toolset, including evaluating and acquiring new tools. This is a highly collaborative role requiring technical expertise, analytical thinking, and a proactive approach to cybersecurity challenges. Travel is minimal, allowing for focused, high-impact work in a dynamic environment.

Accountabilities:

· Execute penetration testing and threat hunting exercises in accordance with NIST SP 800-53A, OWASP, MITRE, and other industry standards.

· Test for vulnerabilities across network, cloud, web, and mobile platforms, validating exploitable findings.

· Conduct social engineering campaigns, including phishing, pretext calling, and creating payloads.

· Develop comprehensive Rules of Engagement, Penetration Test Plans, and client deliverables such as reports and presentations.

· Author actionable recommendations to improve client security posture in compliance with NIST controls.

· Create and maintain testing frameworks, guides, and methodologies tailored to client environments.

· Train team members on testing methods, conduct debrief sessions, and promote knowledge sharing.

· Perform QA on reports and ROEs to ensure accuracy, clarity, compliance, and professional standards.

· Contribute to research, blog posts, and thought leadership in cybersecurity.

· Manage, maintain, and optimize the penetration testing toolset, including vendor communication and acquisition.

Requirements

· Bachelor’s degree in a relevant field.

· Minimum of 5 years’ experience in penetration testing or cybersecurity roles.

· Professional certifications such as OSCP, OSCE, OSWP, CEH, or CRTO.

· Strong experience with tools such as Kali Linux, Cobalt Strike, Burp Suite, Nessus, Metasploit, and Social Engineering Toolkit.

· Familiarity with MITRE Telecommunication&CK Framework, coding (Python, Ruby), and SQL commands.

· Deep understanding of security-related system controls and testing methodologies.

· Excellent analytical, problem-solving, and report-writing skills.

· Strong interpersonal and communication abilities to collaborate with cross-functional teams.

· Proactive, detail-oriented, and capable of managing multiple responsibilities with minimal supervision.

Benefits

· Competitive salary and compensation package.

· Remote work flexibility with minimal travel (