Penetration Tester Job at Talent Space in Thousand Oaks

We are seeking a skilled Penetration Tester to identify and mitigate security risks across our client's digital ecosystem. In this role, you will perform penetration tests on web applications and AWS infrastructure, uncovering and assessing vulnerabilities. You will also collaborate with teams to drive remediation efforts, ensuring timely and effective resolution.

Responsibilities:

• Security Assessments: Perform in-depth security evaluations using manual and automated techniques to identify vulnerabilities and potential attack vectors across enterprise assets
• Remediation Guidance: Provide clear, practical remediation recommendations-both written and verbal-to help teams effectively resolve security issues.
• Vulnerability Management: Identify and prioritize critical vulnerabilities using thread intelligence to guide remediation with the thread landscape.
• Technical: Advise and assist technical teams/leaders on secure application and network design to strengthen overall security posture.
• Vendor Oversight: Define engagement rules, guide third-party penetration testers, and ensure consistent adherence to our client's security standards.
• Automation and Efficiency: Promote automated testing tools to enable continuous assessments, streamline workflows, and enhance operational efficiency.
• Cross-Functional Collaboration: Partner with development and product teams to conduct thread modeling and integrate security into new applications and features from the start.
• Adaptability: Remain ready to take on emerging security challenges and new opportunities.

• Education: Associate degree or equivalent professional experience
• Experience: Minimum 3 years in cybersecurity, penetration testing, or related roles.
• Cloud Security: Strong knowledge of AWS architecture, engineering, and security best practices.
• Vulnerability Management: Skilled in conducting assessments, implementing strategic remediation plans, and driving continuous security improvements.
• Assessment Expertise: Proficient with security testing tools and methodologies for identifying and analyzing vulnerabilities
• Threat Modeling: Experienced in uncovering risks beyond automated detection through comprehensive thread modeling.
• Code Review: Capable of reviewing code in multiple languages to identify security vulnerabilities and weaknesses.
• Ethical hacking: Strong understanding of ethical hacking principles and responsible disclosure practices.
• Certifications: Relevant credentials such as OSCP, CEH, GPEN, or equivalent, demonstrating professional commitment and expertise.
• Adaptability: Confident in taking on complex and unfamiliar security challenges with a proactive mindset.
• Independence & Collaboration: Able to work autonomously while maintaining strong communication and teamwork with peers and leadership.
• Communication: Excellent written and verbal skills for clearly conveying technical findings and recommendations to varied audiences.
• Attention to Detail: Takes pride in thorough documentation and knowledge sharing to ensure clarity and continuous improvement.