Senior Penetration Tester

Overview

Hybrid
Depends on Experience
Contract - W2

Skills

CISSP
Certified Ethical Hacker
Cyber Security
Penetration Testing
Reporting
TCP/IP
Testing

Job Details

**No third-party candidates or candidates requiring sponsorship can be considered."

We are seeking a Senior Penetration Test Coordinator to join our enterprise cybersecurity team. In this role, you will be responsible for planning, coordinating, and overseeing a high volume of penetration testing activities across applications, infrastructure, and cloud environments.

This is a technical coordination role ideal for someone with hands-on security experience who also excels in project management, vendor oversight, and translating technical findings into business risk.

Key Responsibilities:

  • Coordinate 40 50 penetration tests per year (web, app, API, infrastructure, internal/external)
  • Facilitate detailed scoping calls to align testing objectives with business risks
  • Review and assess pentest requests against organizational and regulatory requirements
  • Track and follow up on findings, remediation, retesting, and risk acceptance
  • Create and maintain audit-ready records and regular reporting dashboards (monthly/quarterly/annual)
  • Collaborate with internal teams and third-party testing vendors to ensure timely and high-quality assessments

Qualifications:

  • Bachelor s in Computer Science or 12+ years of technology experience (required)
  • 6+ years of experience in cybersecurity, with exposure to penetration testing processes
  • 2+ years of experience in large enterprises or financial institutions (mandatory)
  • Proven experience managing multiple concurrent testing engagements
  • Strong documentation and communication skills

Preferred Certifications:

  • CISSP (preferred)
  • Other relevant certifications: OSCP, GPEN, CEH, CRTP, or CRTE (a plus)

Technical Skills:

  • Deep understanding of TCP/IP, firewalls, VPNs, proxies, VLANs, and common network architectures
  • Knowledge of OWASP Top 10, secure coding practices, application-layer vulnerabilities
  • Familiarity with tools such as Burp Suite, Nmap, Nessus, Metasploit, Qualys, ZAP
  • Experience with remediation workflows, ticketing systems (JIRA, ServiceNow), and GRC platforms

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

About w3r Consulting