Penetration Testing, Director

About The Position

Requirements

• Bachelor’s degree in computer science or related field, applicable specialized training, or equivalent work experience equally preferable field.
• CISSP, CEH, GPEN, GCIH, OSCP, OSWE, or similar
• Extensive leadership experience in Cybersecurity, with proven track record in offensive security or penetration testing
• Experience successfully managing technical teams or security programs
• Experience successfully leading penetration testing campaigns across global environments
• Demonstrated success with incident response collaboration to improve detection and response
• Experience assessing Artificial Intelligence (AI) technologies and process workflows
• Demonstrated strength in Penetration Testing, with in-depth knowledge of and experience simulating real-world attacks on networks, applications, and cloud environments
• Comprehensive knowledge of adversary simulation frameworks (e.g., OWASP, NIST, MITRE ATT&CK)
• Deep experience with tools such as: Metasploit, Burp Suite, C2 Frameworks, Nmap, Wireshark, Python, PowerShell, or Bash
• Extensive background in cloud security, and demonstrated knowledge of AWS, Azure, or GCP security models and attack surfaces
• Comprehensive knowledge of secure development practices including: secure coding, DevSecOps, and CI/CD pipeline security (with AI IDE integration workloads)
• Demonstrated strength managing and mentoring a team of penetration testers and security practitioners
• Extensive background building and scaling offensive security programs
• Deep experience translating technical findings into business risk for executive stakeholders
• Deep practical knowledge of financial regulations (e.g., FFIEC, SOX, PCI-DSS, GDPR)
• Communicates effectively
• Anticipates changing business needs, adjusts priorities accordingly, and allocates necessary resources and budget to achieve objectives
• Equips the business to become an effective competitor in a highly dynamic landscape
• Considers stakeholder needs and input as well as best practices and insights from industry trends when making strategic decisions
• Is flexible, decisive, and serves as a trusted advisor to senior leaders within the organization
• Demonstrates effective negotiation and influencing skills
• Prioritizes and facilitates a culture of continuous improvement and systems thinking
• Sets the tone for successful collaboration with other business units and corporate entities
• Creates an environment that fosters communication, transparency, and collaboration
• Cultivates innovation and values learning as a lifelong professional objective
• Leads by example, engaging inclusively and with intent
• Always acts with integrity

Nice To Haves

• Experience in Financial Services or other highly regulated industries preferred

Responsibilities

• Develop and implement a comprehensive penetration testing strategy that aligns with the organization’s security objectives
• Oversee the planning, execution, and reporting of penetration tests across applications, infrastructure, cloud, and third-party environments
• Lead, mentor, and manage the team, providing guidance on complex testing scenarios and methodologies
• Deploy testing methodologies and offensive security strategies to identify infrastructure vulnerabilities
• Collaborate with cross-functional teams to communicate findings, risks, and strategies to remediate them effectively
• Present testing coverage, vulnerability trends, and remediation strategies to executive stakeholders
• Provide expertise on implementation of advanced tools for automated and manual testing
• Drive innovation in offensive security tooling, including custom scripts and frameworks
• Hire, develop and retain top penetration testing talent
• Manage penetration testing budget and resource allocation

Benefits

• comprehensive health and wellness benefits
• retirement plans
• educational assistance and training programs
• income replacement for qualified employees with disabilities
• paid maternity and parental bonding leave
• paid vacation, sick days, and holidays