Posted Jul 12, 2026

Security Penetration Tester

Apply for this Position →

This is a remote position.

Job Description – Security Penetration Tester

1. POSITION TITLE

Penetration Tester

2. REPORTS TO

Lead Security Assessor\Technical Manager

3. DELEGATION OF DUTIES DURING ABSENCE

Lead Security Assessor\Technical Manager

4. SUMMARY

The Penetration Tester can be a full-time position, or a duty as assigned additional function. The Penetration Tester will be familiar with Security Assessor Functions also. The Security Assessor will conduct security control assessments of the security and privacy controls implemented by an information system to determine the overall effectiveness of the controls and the vulnerability state of components, applications and databases residing within the system boundary. Following the NIST Cybersecurity Framework, Risk Management Framework and using NIST 800-53A, verifies the security status of existing information systems with an Authority to Operate (ATO) by performing appropriate assessments on any new system developed or deployed by the customer, and conducts audits of security controls to ensure continuous monitoring of systems assigned. Assesses systems that have previously been assessed and received an ATO and systems that have not yet been assessed and do not have an ATO.

5. RESPONSIBILITES


Requirements

6. MINIMUM EXPERIENCE AND SKILLS

7. MINIMUM EDUCATION

8. CERTIFICATIONS

Must possess one of the following certifications:

· SANS GIAC Penetration Tester (GPEN)

· Certified Ethical Hacker (CEH)

· GIAC Certified Forensic Analyst (GCFA)

· CompTIA PenTest+

· OffSec Certified Professional (OSCP)

· OffSec Web Expert (OSWE)

· OffSec Experienced Pentester (OSEP)

· OffSec Web Assessor (OSWA)

· Burp Suite Certified Practitioner


Originally posted on