Penetration Tester Job at Hamilton Porter in Irvine

Base pay range

$140,000.00/yr - $170,000.00/yr

Role Overview

Under the direction of the Manager of Information Security, the Penetration Test Engineer will protect the company and its subsidiaries from cyberattacks, safeguarding sensitive data, the company brand, and business operations. This critical role includes performing penetration tests, identifying vulnerabilities, conducting risk assessments, developing and testing incident response procedures, and collaborating with internal and external teams to enhance companywide security posture.

Key Responsibilities

• Conduct penetration tests across web/business applications, servers, APIs, mobile apps, networks, cloud environments, and connected vehicles.
• Document vulnerabilities with technical reports detailing risk levels and remediation recommendations.
• Lead or participate in all phases of penetration testing: Reconnaissance, Scanning, Vulnerability Assessment, Exploitation, Remediation, and Reporting.
• Develop and maintain security incident response policies; lead table-top exercises and forensic investigations.
• Stay current on emerging security threats and the tools/methods to mitigate them.
• Collaborate with business units and external service providers to implement security enhancements.

Qualifications

• Bachelor’s degree or equivalent experience in information security; advanced degrees or certifications a plus.
• 8+ years in organizations with mature security practices.
• 3+ years conducting hands-on penetration tests and vulnerability management; Red Team experience preferred.
• 3+ years in information security incident response, cybersecurity, or IT risk management.
• Experience with security auditing, compliance regulations, and evidence collection.
• Experience in penetration testing on vehicles is a plus.
• Success in CTF competitions and/or bug bounty programs is highly desirable.
• Skilled in IT infrastructure, security components, scripting (Python), and penetration testing tools (Burp Suite, Kali Linux, Metasploit, John the Ripper, Nmap, Wireshark, OWASP ZAP, Aircrack-ng, Tenable Nessus, etc.).
• Excellent communication, leadership, and organizational skills.

Preferred Attributes

• High emotional intelligence for effective collaboration and stakeholder communication.
• Proactive, self-motivated, and able to lead multiple concurrent initiatives.
• Expertise in SIEM, attack chains, emerging threats, and security monitoring best practices.

Why Join

• Work in a fast-paced, innovative environment shaping the future of mobility.
• Competitive compensation and benefits package.
• Opportunities for professional growth and cross-functional collaboration.

Employment type

• Full-time

Job function

• Quality Assurance and Engineering

Industries

• Motor Vehicle Manufacturing, Information Services, and Technology, Information and Media