Description Robert Half has a brand new opening for a Sr Penetration Tester with a client of ours based here in Tampa, FLPosition is 100% REMOTE, ongoing contract - FLEXIBLE HOURSCompensation ranges $40-45/hour on W2 (can go higher if Independent Contractor)Interviews are actively being scheduled - Apply NOW!As a Senior Penetration Tester, you will be part of a dedicated pen testing team whose sole purpose is to test and improve the security of our clients’ systems and data across a wide range of industries. This is not an entry level position, but a position open for an experienced, seasoned or specialized hacker. If you have an appetite for penetration testing and want to build your knowledgebase and skillset; this position is for you.Top Skills/Experience Needed:
MUST HAVE Cybersecurity Certifications - OSCP MUST HAVE -or- EWPT
MUST HAVE Secondary Certification in Pen Testing - (CEH does not count)
Experience working with internal AND external wireless web applications
Responsibilities:
Execute internal, external, wireless, mobile, API and web application pen tests.
Execute social engineering tests, including phishing, vishing, and physical.
Execute vulnerability scans and assessments.
Compile and write client reports
Requirements
Qualifications:· Master’s or Bachelor’s degree in cybersecurity, management information systems, computer science, or relevant discipline.· Two of the following penetration certifications required: GWAPT, CEPT, LPT, GPEN, CPT, GXPN, PenTest+, GAWN, GMOB, CRTOP· 5+ years of experience with penetration tests and vulnerability assessments; including internal, external, wireless, mobile, and web application testing.· Proficiency with scripting languages (Python, Bash, JavaScript, Powershell)· Knowledge of incident response/forensics/red-teaming or DevOps a huge plus but not required.· Understanding of API’s, how they work, and how to test them.· Experience using cloud CSP’s such as AWS, Azure, AliCloud, Google cloud, Rackspace, and any internal associated components/controls.· You can perform social engineering campaigns including phishing, vishing, and physical.· You can re-image your own system when necessary, and navigate Kali Linux to conduct penetration tests, with only command line access as necessary.· You can create, modify, and write documents from command line, and write Bash scripts to automate or facilitate tasks as necessary.· You can write professional reports with proper grammar, spelling, and punctuation, that need very little QA review.· You can communicate with clients, and understand if something needs to be escalated internally.· You are comfortable monitoring the metrics of a project, personal utilization, and constant improvement toward efficiency.· You have three or more certifications such as CEH, OSCP, OSCE, GWAPT, GPEN, CEPT, LPT, CPT, GXPN, PenTest+, GAWN, GMOB, CRTOPSkills Looking For:· Working knowledge of Kali Linux and standard security assessment tools (e.g., NMAP, metasploit, Scapy, Burp Suite, SSLStrip, Ettercap, Nessus, Nikto, AppScan) and can talk about any others you have used.· Strong written and verbal communication skills.· You can run scans and perform tests with minimal impact to client networks.· You have an understanding of both iOS and Android application testing, and how to jailbreak/root devices, use emulators.· Understanding of SOAP/REST/JSON web APIs and how to test them.· Experience using interpreted languages (Ruby, Python, PHP, etc.)· You can explain findings in a non-technical form.Additional Qualifications:· Programming experience in one or more of the following languages: Ruby, Python, Perl, C, C, Java, and C#· Knowledge of network protocol design, or zero day exploitation· Know about static code analysis and have used SCA tools· You have soldered to a device to exploit it, or extract information from an embedded device.· You are an innovator, you feel something is missing, and want to create it.· Want to work in IoT, embedded testing, or research niche threat and exploitation for the future.Technology Doesn't Change the World, People Do.® Robert Half is the world’s first and largest specialized talent solutions firm that connects highly qualified job seekers to opportunities at great companies. We offer contract, temporary and permanent placement solutions for finance and accounting, technology, marketing and creative, legal, and administrative and customer support roles.Robert Half works to put you in the best position to succeed. We provide access to top jobs, competitive compensation and benefits, and free online training. Stay on top of every opportunity - whenever you choose - even on the go. Download the Robert Half app (https://www.roberthalf.com/us/en/mobile-app) and get 1-tap apply, notifications of AI-matched jobs, and much more.All applicants applying for U.S. job openings must be legally authorized to work in the United States. Benefits are available to contract/temporary professionals, including medical, vision, dental, and life and disability insurance. Hired contract/temporary professionals are also eligible to enroll in our company 401(k) plan. Visit roberthalf.gobenefits.net for more information.© 2024 Robert Half. An Equal Opportunity Employer. M/F/Disability/Veterans. By clicking “Apply Now,” you’re agreeing to Robert Half’s Terms of Use (https://www.roberthalf.com/us/en/terms) .
