Senior Penetration Tester

Job#: 3031909

Job Description:

Senior Penetration Tester
Overview

An experienced Senior Penetration Tester is sought to support operational cyber test and evaluation activities. This role is responsible for developing and executing cyber test plans, conducting advanced penetration testing and red team operations, and documenting results across operational, laboratory, and cyber range environments. Testing may involve physical, virtualized, and cloud-based systems. The position requires independent execution, technical leadership, and strong written and verbal communication skills.
Responsibilities

• Develop, execute, and report results for penetration testing and red team activities in support of cyber test and evaluation objectives.
• Conduct cyber testing on operational systems in laboratory, cyber range, and live environments using authorized analytic techniques and resources.
• Perform adversarial testing, cooperative vulnerability assessments, and cyber tabletop exercises in support of operational, developmental, and risk-reduction testing.
• Research and develop tactics, techniques, and procedures (TTPs) for penetration testing and red team operations.
• Analyze adversary cyber actors, including TTPs, organizational structures, capabilities, personas, and target environments, and integrate findings into test planning and execution.
• Conduct open-source research and system documentation reviews to understand system missions, architectures, interfaces, attack surfaces, and threat vectors.
• Guide development and review of test plans to ensure objectives are feasible and aligned with testing goals.
• Lead or contribute to test planning meetings, site visits, pre-test coordination, and in-briefs.
• Prepare and manage government-furnished test assets and maintain technical reference materials.
• Validate the safety and functionality of offensive tools and exploits using source code analysis and document findings.
• Detect malicious program activity using dynamic analysis techniques and document results.
• Execute testing safely and in compliance with applicable policies and deconfliction procedures.
• Verify collected test data for accuracy and completeness; produce post-test documentation such as deficiency and risk reports.
• Participate in lessons learned activities, technical exchanges, capture-the-flag events, and other professional cyber engagements.
• Maintain required documentation to support authorization and compliance activities.
• Provide technical leadership and direction to junior and intermediate operators as needed.

Required Qualifications

• Minimum 6 years of experience performing penetration testing, red teaming, and/or exploitation development.
• Minimum 6 years of experience leading red team operators to accomplish assigned penetration testing or red team objectives.
• Offensive security certification required, such as:
  • OSCP, OSCE, GX-PT, GXPM, PNPT, or HTB CPTS
• Proficiency with multiple offensive security tools, including but not limited to:
  • Metasploit, Cobalt Strike, Core Impact, Burp Suite, Nessus, SharpHound/BloodHound
• Experience exploiting vulnerabilities and misconfigurations across:
  • Operating systems (e.g., Windows, Linux)
  • Network protocols (e.g., HTTP, FTP)
  • Security services (e.g., PKI, HTTPS)
• Ability to operate independently while conducting penetration tests and red team operations.
• Strong documentation skills with the ability to clearly communicate technical findings.
• Proficiency with Microsoft Office and workplace collaboration tools (e.g., Teams or similar platforms).
• Excellent written and verbal communication skills.

Apex Systems is a world-class IT services company that serves thousands of clients across the globe. When you join Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing in Talent Satisfaction in the United States and Great Place to Work in the United Kingdom and Mexico. Apex uses a virtual recruiter as part of the application process. Click for more details.

Apex Benefits Overview: Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Apex team member can provide.