Ibex Staffing Solutions

    About the role
    The Senior Penetration Tester is responsible for leading penetration testing engagements, including hands-on testing of client networks and assets. This role involves meeting with clients to define scope and rules of engagement, conducting tests using industry-recognized methodologies, and documenting all findings in detailed reports. The tester will also present results to clients and ensure their needs are fully addressed. Additionally, the Senior Penetration Tester will assist and mentor junior team members, delegate tasks as needed, and ensure that each engagement is executed effectively and professionally.

    Who are we?
    IBEX Staffing Solutions is a forward-thinking recruitment firm specializing in remote and IT staffing. We connect exceptional global talent with innovative companies, helping businesses scale and thrive in a digital-first world.

    Hire the brightest. Hire the best.

    Job Details
    Role: Senior Penetration Tester
    Location: Remote
    Type of Engagement: Long term Contract
    Schedule: US Timezone - EST

    Key Requirements

    • Hands-on experience with the following:
    • Internal network penetration testing
    • External network penetration testing
    • Web application penetration testing
    • Experience with standard penetration testing tools and Linux distributions, such as:
      Tenable Nessus
      Burp Suite
      Metasploit
      Nmap
      Netcat
      Kali Linux
      Parrot OS
    • Must have excellent writing skills and be able to write clear, detailed reports on observations raised during penetration testing. This includes, but is not limited to:
      Non-technical executive summary
      Technical steps to reproduce the finding
      Impact to the business
      Steps to remediate
    • Must be familiar with industry-recognized penetration testing methodologies, and how to execute a penetration test according to a standardized methodology, such as:
      NIST 800-115
      The PTES Framework
      OWASP
    • Wireless penetration testing
    • Mobile penetration testing
    • API penetration testing
    • Social engineering
    • OSINT investigations
    • Experience with ethical hacking programs or events:
      HackTheBox, TryHackMe, PortSwigger’s Web Security Academy, PentesterLab, Hacker101
      Capture the Flag (CTF) events
      HackerOne, Bugcrowd, Intigriti
    • Programming experience:
      Bash, PowerShell, Python, Java, Go, Ruby, etc.
      Published CVEs, blog posts, articles, or speaking engagements

    %FOOTER_POWERED_BY%breezy