Role Overview We’re hiring a Senior Penetration Tester with a strong background in network penetration testing to join our team. In this role, you’ll lead assessments across a variety of environments, simulate attacker behavior, and produce actionable, professional deliverables that help clients improve their security posture. This is a client-facing role. You’ll be involved from kickoff to final report—helping scope engagements, maintaining written correspondence throughout testing, and participating in executive readouts and remediation sessions. While the primary focus is network testing, experience in web or mobile application security is considered a valuable asset, not a strict requirement. We welcome both full-time and contract applicants. What matters most is your technical capability, professionalism, and ability to communicate clearly. Key Responsibilities Plan and execute internal and external network penetration tests (cloud, on- premise, hybrid) Perform reconnaissance, exploitation, lateral movement, and post-exploitation activities Deliver well-written, technically sound reports with risk summaries and mitigation advice Participate in client calls, including kickoffs, status updates, remediation meetings, and executive reviews Maintain clear written communication with clients during the engagement Support the sales team with scoping, effort estimation, and technical input Stay current with attacker tools, techniques, and threat trends Contribute to web or mobile application testing projects as needed Required Skills & Experience Fluent in English with excellent communication skills (written and verbal) Completion of practical labs (e.g., Hack The Box, TryHackMe, OffSec Proving Grounds). Professional experience in network penetration testing, red teaming, or adversary simulation Strong knowledge of Active Directory, network protocols, common misconfigurations, and lateral movement techniques Proficiency with tools such as Nmap, BloodHound, NetExec, Cobalt Strike, Sliver, or similar Comfortable leading client engagements independently and representing the company in a consultative capacity Nice to Have Experience in web or mobile application testing, including: o OWASP Top 10, WSTG, or MASVS methodologies o Familiarity with tools such as Burp Suite, ZAP, Postman, Fiddler, browser dev tools, or mobile proxies o Understanding of common vulnerabilities like IDOR, CSRF, XSS, insecure storage, etc. Scripting or tooling experience (e.g., Python, PowerShell, Go) Industry certifications such as OSCP, OSEP, PNPT, CRTP, or similar Public contributions (e.g., writeups, tools, blogs, research) Experience mentoring team members or speaking at meetups/conferences What We Offer A respectful, flexible, and fully remote work environment Opportunities to work on challenging, high-impact client projects Paid access to tools, labs, and learning resources Supportive team culture with mentorship and professional development Autonomy and variety—your work directly shapes client outcomes