A-LIGN
Senior Penetration Tester Consultant — A-LIGN
Join to apply for the Senior Penetration Tester Consultant role at A-LIGN . Position is full-time.
Pay Classification : Full-Time
Reports to : Managing Consultant
About the Role
The Senior Penetration Tester works to test and improve the security of our clients' systems and data across a wide range of industries. In this role, you will execute all types of penetration tests, social engineering tests, and vulnerability scans, and compile and write client reports. You will provide exceptional testing and high-quality deliverables to clients to help the continued growth of our fast-paced company.
Responsibilities
Execute internal, external, wireless, and web application penetration tests.
Perform social engineering tests, including phishing, vishing, and physical.
Complete vulnerability scans and assessments.
Compile and write client reports.
Reimage devices and virtual machines with Kali Linux.
Create and write Bash scripts from the command line.
Create, modify, move, and write files and documents from the command line.
Minimum Qualifications
Master's or Bachelor's degree in cybersecurity, management information systems, computer science, or related discipline.
At least 5 years of experience with penetration tests and vulnerability assessments (internal, external, wireless, mobile, and web application testing).
Programming experience in one or more of the following languages: Ruby, Python, Perl, C, C++, Java, and C#.
Proficiency working with both Windows and Linux operating systems.
Capability to perform penetration testing from the network layer to the web application layer, culminating in a quality report.
Familiarity with major cloud CSPs (AWS, Azure, AliCloud, Google Cloud, Rackspace).
Solid understanding of SOAP/REST/JSON web APIs and testing methodologies.
Working knowledge of standard security assessment tools (NMAP, Metasploit, Scapy, Burp Suite, SSLStrip, Ettercap, Nessus, Nikto, AppScan).
Involvement with CTF and exploitation tools (HackTheBox profile preferred).
Background in Security Operations, Incident Response, forensics, red‑team or DevOps preferred.
Certifications
One of the following required: OSCP/eCPPT, eWPT or applicable web app cert.
Two of the following: GWAPT, CEPT, LPT, GPEN, CPT, GXPN, PenTest+, GAWN, GMOB, CRTOP.
Skills
Background and understanding of networking, firewalls, and subnets.
Understanding of security best practices.
Thrives in a fast-paced environment.
Excellent communication skills.
Ability to work individually and collaboratively.
High degree of motivation.
Security-focused mindset.
Proficiency with scripting languages (Python, Bash, JavaScript, PowerShell).
Ability to create, modify, write documents from command line, and automate tasks with Bash scripts.
Benefits
Healthcare, Dental, Vision Benefits.
Employer-paid Life Insurance and Disability Insurance.
EAP – Employee Assistance Program.
Pet Insurance.
401(k) Plan with Employer Matching.
Competitive Bonus Structure.
Technology Allowance.
Certification Reimbursement.
Personalized Career Coaching.
Generous Paid Time Off.
Paid Office Closure Dec 25‑Jan 1.
Vacation Bonus.
Summer Hours.
About A‑LIGN
A‑LIGN is the leading provider of high-quality, efficient cybersecurity compliance programs. It offers SOC 2, ISO 27001, HITRUST, FedRAMP, and PCI services and is the number one issuer of SOC 2 and HITRUST and a top three FedRAMP assessor.
A‑LIGN is an Equal Opportunity Employer. Minorities, women, disabled, and veterans are encouraged to apply!
#J-18808-Ljbffr