Senior Penetration Tester

Overview

On Site
Depends on Experience
Full Time

Skills

Penetration testing
Burp Suite
Nmap
Metasploit
Nessus
Python
Powershell

Job Details

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a work hard, play hard mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we're looking for:

We are seeking a Senior Penetration Tester to conduct advanced security assessments and penetration tests across enterprise systems, networks and applications. This role is responsible for identifying vulnerabilities, assessing their severity and delivering detailed technical reports to guide remediation efforts. The Sr. Penetration Tester brings significant hands-on experience with penetration testing methodologies and tools, stays current on emerging security trends and contributes by mentoring junior team members. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market. 

What you'll be doing:

  • Conduct comprehensive penetration tests of enterprise systems, applications and infrastructure.
  • Identify, exploit and document security vulnerabilities using advanced testing techniques.
  • Evaluate the severity and potential impact of vulnerabilities to help prioritize remediation efforts.
  • Develop detailed reports with actionable recommendations for both technical and non-technical audiences.
  • Lead or contribute to multiple testing engagements, ensuring thorough execution and documentation.
  • Stay informed on emerging security threats, tactics and tools to improve testing approaches.
  • Mentor junior team members and support knowledge-sharing across the security team.
  • Support custom tool development and automation efforts where appropriate.

What you need to know:

  • In-depth knowledge of penetration testing methodologies and red team operations.
  • Significant hands-on experience with a wide range of penetration testing tools and frameworks.
  • Familiarity with scripting for automation and custom exploit development.
  • Ability to clearly document findings and communicate risk to diverse stakeholders.
  • Strong analytical thinking and creative problem-solving skills.
  • Experience staying current with evolving threat landscapes and adversarial tactics.

Must have's:

  • Bachelor's degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field.
  • 5+ years of related experience.
  • (ISC)2 Certified Information Security Professional (CISSP) or an equivalent that covers a similar level of information security domains, knowledge and/or experience.
  • Demonstrated hands-on experience with penetration testing methodologies, hacking techniques and relevant security frameworks.
  • Proficiency with tools such as Burp Suite, Nmap, Metasploit, Nessus and custom scripts.
  • Familiarity with scripting languages such as Python, PowerShell or similar for automation and custom tool development.
  • Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.

Beneficial to have:

  • Background in compliance or regulatory standards.

Where it's done:

  • Onsite (Washington, D.C.)
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.