×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity

SENIOR Penetration TESTER; Remote

Remote / Online - Candidates ideally in
North Bethesda, Montgomery County, Maryland, USA
Listing for: Emagine IT
Remote/Work from Home position
Listed on 2026-01-24
Job specializations:
  • IT/Tech
    Cybersecurity
Job Description & How to Apply Below
Position: SENIOR PENETRATION TESTER (Remote)

Overview

Sr. Penetration Tester position with Emagine IT to join our Commercial Services Team located remote.

In this role, you will facilitate Penetration Tests, Threat Hunting exercises and possibly other advanced-level Continuous Monitoring Activities within cloud-based environments. To succeed in this position, you will need a strong understanding of security-related system controls and an understanding of the various testing methods utilized to ascertain the effectiveness of those controls. You will work in a team atmosphere with an experienced Sr.

Consultant Project Lead, and you will be assigned technical sections and provide client-ready deliverables.

Responsibilities
  • Execute testing procedures in accordance with NIST SP 800-53A and industry testing standards like OWASP, MITRE, etc.
  • Test for vulnerabilities, validate exploitable vulnerabilities within network, cloud, web and mobile environments
  • Perform Social Engineering campaigns, including email phishing, spear phishing, phone pre-text calling - Including but not limited to creation of landing pages, creation of embedded executable payloads
  • Develop Rules of Engagement, Penetration Test Plans, Penetration Testing report, Power Point presentations for kick-off and closing of client engagements
  • Author recommendations based on findings to improve security postures compliant with NIST controls
  • Penetration Testing/Threat Hunting (75%);
    Advisory/Consulting (25%)
  • Experience using:
    • Kali Linux
    • Cobalt Strike
    • Social Engineering Toolkit
    • Burp Suite
    • Nessus
    • Metasploit Framework
    • Experience using the MITRE ATT&CK Framework
    • Good understanding of coding (Python, Ruby, etc.)
    • Understanding of SQL commands and testing
    • Expected Travel less than 25%
Essential Functions /

Duties & Responsibilities
  • Develop Testing Guides Based on Methodologies (MITRE, OWASP, etc.)
    • Creation of Comprehensive Testing Frameworks:
      Develop detailed penetration testing guides and frameworks that align with industry standards such as MITRE ATT&CK, OWASP Top Ten, NIST, and others. These guides serve as a foundation for the team, providing step-by-step methodologies for various types of tests, such as web application, network, mobile, wireless, and social engineering assessments.
    • Incorporation of Advanced Techniques:
      Regularly update these guides to incorporate the latest attack techniques and defensive strategies. This includes adapting to emerging threats and ensuring the guides remain relevant in the rapidly evolving cybersecurity landscape.
    • Customization for Client Environments:
      Tailor these methodologies to meet specific client environments and industry requirements, ensuring that the testing approach is both comprehensive and contextually appropriate.
  • Develop Team Trainings Based on Test Guides and Engagement Debriefs
    • Training Program Development:
      Design and implement training programs for the penetration testing team, leveraging the developed test guides. This includes foundational training for new hires and advanced sessions for experienced testers, covering both the theoretical and practical aspects of penetration testing.
    • Debrief and Knowledge Sharing:
      Conduct debrief sessions following each engagement to discuss unique or novel findings. These sessions aim to share lessons learned, explore new vulnerabilities or attack techniques encountered, and foster a culture of continuous learning within the team.
    • Simulation and Hands-On Training:
      Organize practical, hands-on workshops and simulations to provide team members with real-world experience in using new tools and methodologies. Encourage a red teaming mindset to challenge the status quo and think like adversaries.
  • Take on QA Responsibilities for Reports or Rules of Engagement (ROEs)
    • Quality Assurance for Reports:
      Perform thorough quality assurance (QA) reviews of penetration testing reports to ensure accuracy, clarity, and completeness. This includes verifying that findings are well-documented, evidence is clearly presented, and recommendations are actionable and relevant.
    • Consistency and Compliance:
      Ensure that all reports adhere to internal and external compliance requirements and follow a standardized format. This includes checking that language is…
    • Position Requirements
    10+ Years work experience
    To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
    (If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
     
     
     
    Search for further Jobs Here:
    (Try combinations for better Results! Or enter less keywords for broader Results)
    Location
    Increase/decrease your Search Radius (miles)

    Job Posting Language
    Employment Category
    Education (minimum level)
    Filters
    Education Level
    Experience Level (years)
    Posted in last:
    Salary
    Advanced Search