Senior Penetration Tester Remote USA

Title: Senior Penetration Tester

Location: Remote USA

Position: Full-Time Direct Hire

Join an Award Winning Security Organization

TalentFish LLC is casting a line for a Senior Penetration Tester for a full-time remote opportunity with our premier Information Security consulting client.

Overview

Are you an experienced penetration tester ready to move beyond checkbox testing?

This role offers the opportunity to dive into advanced adversarial simulations including assumed breach, EDR evasion, and social engineering for clients across diverse industries.

Our client is actively building toward a formal Red Team practice, and this position will play a key role in shaping that evolution. You'll be part of a collaborative, hands-on team that values innovation, initiative, and pushing the limits of offensive security consulting. If you're passionate about contributing to tooling, methodology, and meaningful security outcomes, this is your chance to make a lasting mark.

What You Will Do

• Deliver advanced offensive engagements for clients in a consulting capacity.
• Perform social engineering and assumed breach testing using Red Team techniques to evade modern security controls that are deployed in a client environment.
• Apply extensive knowledge of adversary tactics, including the MITRE ATT&CK
• Contribute to the internal penetration testing framework, including tool development and custom scripting, testing methodology refinement, and research.
• Produce articulate, client-facing reports with prescriptive remediation guidance.

Qualifications:

• 5+ years of experience in penetration testing and/or Red Teaming across diverse technologies.
• Strong understanding of Active Direcotry attack paths (g., Kerberoasting, ACL abuse, DCSync).
• Proficiency with C2 and Red Team tools (e.g., Cobalt Strike, Sliver, Mythic, Covenant).
• Experience developing or using offensive infrastructure to support Red Team engagement capabilities (e.g., phishing platforms, custom exploits).
• Proven skills in defense evasion particularly against EDR and security monitoring tools (e.g. Endpoint Detection and Response).
• Scripting experience in Python, PowerShell, Bash, or equivalent.
• Strong organizational skills, including ability to deliver with minimal supervision.
• High motivation, integrity, and commitment to self-development.
• Clear, confident communication skills comfortable in a client-facing role is essential.
• One or more of the following certifications: OSCP, CRTO, GPEN.

Nice to Have

• Prior consulting experience in pen testing or red teaming.
• Formal education in InfoSec, Computer Science, or related field.
• Additional certifications such as ISEP, OSED, GXPN.

Interview, Compensation, and Employment
This role requires authorization to work in the U.S. without need of current or future visa sponsorship. All candidates selected for interview will be required to sign strict confidentiality and non-disclosure agreements. The expected annual salary is $140,000 - $190,000 depending on experience and qualifications. The role also qualifies for a bonus plan and comprehensive employee benefits including health insurance, 401k, and paid time off. All offers are contingent upon the completion of a background check, which may include but is not limited to reference checks, education verification, employment verification, drug testing, criminal records checks, and any required certifications or compliance requirements based on the end client's background check policies and applicable laws.
TalentFish is an employee-owned company pioneering a new realm in talent acquisition. We are redefining IT staffing by evolving AI, video screening, and our unique platform. TalentFish focuses on providing the best employee, consultant, and client experience possible. At TalentFish we are an Equal Opportunity Employer; we embrace and encourage diversity!