Senior Penetration Tester

Senior Penetration Tester

Seeking a Senior Penetration Tester to conduct authorized network & infrastructure penetration testing to identify, validate, and demonstrate security weaknesses.

Location:

Raleigh, NC, US

• Plan and execute internal and external penetration tests for network and infrastructure environments
• Perform vulnerability identification, validation, and controlled exploitation
• Assess security posture across:
  • Network devices (firewalls, routers, switches)
  • On‑premise servers and operating systems (Windows, Linux, Unix)
  • Active Directory and identity infrastructure
  • Remote access solutions and VPNs
  • Cloud environments (where applicable)
• Simulate advanced threat actor techniques including:
  • Privilege escalation
  • Lateral movement
  • Credential compromise
  • Persistence mechanisms
• Evaluate security configurations and control effectiveness
• Conduct testing in accordance with approved Rules of Engagement
• Prepare and deliver formal penetration testing reports suitable for executive, audit, and technical audiences
• Support remediation validation and follow-up testing as required

• Minimum 7–10 years of hands‑on experience in penetration testing or offensive security
• Demonstrated expertise in network and infrastructure security testing
• Strong understanding of: TCP/IP, DNS, DHCP, VPN, firewalls, IDS/IPS;
  Windows and Linux system internals;
  Active Directory attack paths and defenses
• Advanced proficiency with penetration testing tools such as:
  Nmap, Nessus, Metasploit, Burp Suite;
  Blood Hound, Net Exec, Ping Castel Analysis tools
• Experience producing standard penetration testing reports
• Familiarity with security frameworks and standard, including: NIST SP 800‑53, 800‑115, 800‑61; MITRE ATT&CK; OWASP Testing Guide
• Experience working within regulated or high‑security environments
• Strong understanding of legal, ethical, and compliance requirements for penetration testing