Company: Test Company
Location: Remote / Hybrid / On-Site
Employment Type: Full-Time
Department: Information Security

About Test Company

Test Company is expanding its digital footprint and strengthening its cybersecurity posture. We believe security must be embedded into systems from design to deployment.

We are seeking a highly skilled Senior Ethical Hacker to lead offensive security testing and proactively defend our digital assets.

Position Overview

The Senior Ethical Hacker will simulate advanced cyberattacks to evaluate the security of applications, networks, cloud infrastructure, and internal systems.

This role goes beyond vulnerability scanning. We need someone who can:

  • Identify complex attack chains
  • Think strategically about risk
  • Translate technical findings into business impact

You will work closely with software engineers, DevOps teams, and executive leadership to strengthen enterprise-wide security controls.

Core Responsibilities

  • Conduct advanced penetration testing (web, API, mobile, network, cloud)
  • Perform red team exercises and adversary simulations
  • Identify privilege escalation paths and lateral movement opportunities
  • Assess cloud security configurations (AWS, Azure, or GCP)
  • Evaluate authentication, authorization, and encryption mechanisms
  • Conduct source code security reviews
  • Develop detailed technical and executive-level security reports
  • Recommend long-term security architecture improvements
  • Mentor junior security analysts

Required Skills & Experience

  • 4+ years of hands-on penetration testing experience
  • Strong knowledge of:
    • Network protocols and infrastructure security
    • Secure coding practices
    • Cryptography fundamentals
    • Identity and access management systems
  • Experience with tools such as:
    • Burp Suite Professional
    • Metasploit
    • Nmap
    • Wireshark
    • Kali Linux
    • Nessus or OpenVAS
  • Proficiency in scripting (Python, Bash, or PowerShell)
  • Experience testing REST APIs and token-based authentication systems
  • Strong understanding of OWASP Top 10 vulnerabilities

Preferred Certifications

  • OSCP
  • CEH
  • CISSP
  • CompTIA Security+

What Success Looks Like

  • Critical vulnerabilities are identified before production exposure
  • Clear, actionable remediation guidance is delivered
  • Security risk is reduced across the organization
  • Development teams adopt secure coding practices

Why Join Test Company?

  • Opportunity to lead offensive security strategy
  • Support for advanced cybersecurity certifications
  • Direct influence on enterprise security decisions
  • Competitive salary and benefits

Apply for this position

Allowed Type(s): .pdf, .doc, .docx