Senior Penetration Tester

Remote • Posted 7 hours ago • Updated 7 hours ago
Full Time
No Travel Required
Remote
Depends on Experience
Company Branding Image
Fitment

Dice Job Match Score™

🧠 Analyzing your skills...

Job Details

Skills

  • RED TEAM
  • Penetration Tester

Summary

Job Title:

Senior Penetration Tester / Offensive Security Specialist (Red Team)

Location: - Remote (Preferably Dallas, TX)


Role Overview

HCLTech is seeking an experienced Penetration Testing and Offensive Security Specialist to lead and execute advanced adversarial simulations across enterprise environments. The role focuses on identifying exploitable weaknesses across network, application, cloud, human, and physical layers, emulating real-world attacker techniques.

The ideal candidate will bring hands-on expertise in multi-vector penetration testing, red teaming, exploit development, and adversarial simulation, with the ability to provide actionable remediation insights to strengthen enterprise security posture.


Key Responsibilities

1. Penetration Testing & Red Team Operations

  • Conduct end-to-end penetration testing engagements, including:
    • Internal network assessments
    • External perimeter testing
    • Web application and API security testing
    • Cloud and container security testing
    • Mobile (iOS) and thick client application assessments
    • Wireless infrastructure testing
  • Execute advanced attack simulations to emulate real-world adversary tactics

2. Exploitation & Vulnerability Analysis

  • Identify, validate, and exploit vulnerabilities using techniques such as:
    • SQL Injection
    • Cross-Site Scripting (XSS)
    • Privilege Escalation
    • Credential harvesting and manipulation
  • Perform:
    • Vulnerability chaining and lateral movement simulations
    • Post-exploitation persistence and privilege escalation
  • Provide risk-rated findings with clear remediation guidance

3. Social Engineering & Human Layer Testing

  • Design and execute social engineering campaigns, including:
    • Phishing and spear-phishing
    • Smishing and pretexting
  • Assess organizational resilience to human-centric attacks

 


4. Red Team Automation & Tool Development

  • Develop and maintain:
    • Custom exploitation scripts and toolkits
    • Automation workflows for reconnaissance and exploitation
  • Leverage:
    • Python scripting and Linux toolchains
    • AI/GenAI-assisted tooling for attack simulation and reconnaissance

5. Offensive Intelligence & Reconnaissance

  • Perform OSINT-based reconnaissance, including:
    • Target profiling and attack surface discovery
    • Dark web and surface web intelligence gathering
  • Utilize tools such as:
    • Nmap, Wireshark
    • Threat intelligence platforms (e.g., Recorded Future or equivalents)

6. Purple Teaming & Validation Support

  • Collaborate with defensive teams to:
    • Validate detection and response capabilities
    • Simulate attack scenarios and measure control effectiveness
  • Support:
    • Breach simulations
    • Ransomware scenario testing

Required Skills & Experience

Core Technical Skills

  • Proven experience in:
    • Multi-vector penetration testing (Network, Web, Cloud, Mobile, Wireless, Physical)
    • Red teaming and adversary emulation
    • Exploit execution and vulnerability validation
  • Strong understanding of:
    • MITRE ATT&CK framework
    • Modern attack techniques and threat actor TTPs

Tools & Technologies

  • Hands-on expertise with:
    • Nmap, Wireshark, Burp Suite, Metasploit (or similar toolsets)
  • Experience with:
    • Web application security tools
    • Network and protocol analysis tools

Automation & Scripting

  • Strong development experience in:
    • Python
    • Linux environments
  • Ability to build:
    • Custom scripts, payloads, and automation frameworks

Complementary Experience (Preferred)

  • Exposure to:
    •  Investigations and compromise assessments
    • Threat Intelligence and IOC analysis
  • Experience participating in:
    • Red Team vs Blue Team or Purple Team exercises

Certifications (Preferred)

  • Offensive Security Certified Professional (OSCP)
  • Certified Ethical Hacker (CEH)
  • GIAC Security Essentials (GSEC)
  • Other advanced Red Team or exploit development certifications are a plus

Soft Skills & Attributes

  • Strong analytical and problem-solving skills
  • Ability to think like an adversary and simulate realistic attack paths
  • Clear communication skills for delivering executive-ready risk reports
  • Ability to operate independently and in high-stakes testing environments
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
  • Dice Id: 10115377
  • Position Id: 9015977
  • Posted 7 hours ago

Company Info

About Sharpedge Solutions

Sharpedge Solutions is a leading technology product development and services company providing cutting-edge solutions to various industries across the spectrum. We offer broad-scale cost-effective technical solutions through our Onsite-Offshore model ranging from design, architecture, development to implementation and support. Sharpedge offers IT expertise in multiple verticals such as Insurance, Telecom, Healthcare, Banking & Financial Services, Retail, and Manufacturing.

Our services comprise of building, re-engineering, enhancing, and supporting enterprise applications. Sharpedge's seasoned professionals and innovative products ensure our clients stay ahead of the curve in the fast-evolving technology market.

With over 20 years of successful operations and exceptional growth history, we take great pride in delivering quality solutions that improve performance and reduce IT costs while increasing the return organizations get from their investments and assets.

About_Company_OneAbout_Company_Two
Contact the job poster
PC

Praduman Chauhan

Recruiter @ Sharpedge Solutions
Create job alert
Set job alertNever miss an opportunity! Create an alert based on the job you applied for.

Similar Jobs

It looks like there aren't any Similar Jobs for this job yet.

Search all similar jobs