Senior Penetration Tester (US)

BreachLock
Remote
Match Resume

About The Position

As a penetration tester on BreachLock's US Strategic delivery team, you'll execute manual, methodology-driven engagements across web applications, APIs, and internal networks — including assumed breach simulations — for enterprise clients. You'll work directly with delivery leadership, contribute to internal tooling and quality systems, and help raise the bar for the team around you.

Requirements

  • 3–5 years of professional penetration testing experience in a delivery or consulting context
  • Strong web application and API testing fundamentals — Burp Suite proficiency, OWASP Top 10 and beyond, authentication and session management testing
  • Solid internal network assessment skills — AD enumeration, Kerberoasting, NTLM relay, ADCS misconfigurations, assumed breach methodology
  • Proficiency in scripting and automation (Python, PowerShell, Bash)
  • Strong written communication — capable of writing clear, accurate, well-scoped findings independently
  • US-based and eligible to work without sponsorship

Nice To Haves

  • Familiarity with PTaaS delivery models or platform-based reporting workflows is a plus
  • Experience with C2 frameworks (Cobalt Strike, Havoc, Sliver, or similar)
  • Active involvement in cybersecurity communities, research, or bug bounty programs
  • Certifications such as OSCP, BSCP, CRTO, GWAPT, GPEN, or equivalent practical credentials
  • Experience with SIEM platforms or EDR tools from an adversarial perspective

Responsibilities

  • Execute web application, API and mobile penetration tests with a focus on manual testing beyond automated scanning — business logic, authentication abuse, authorization flaws, and injection chains
  • Conduct internal network assessments, external network assessments and assumed breach engagements, including Active Directory enumeration, lateral movement, privilege escalation, and post-exploitation
  • Leverage frameworks including MITRE ATT&CK, PTES, and OWASP to structure assessments and findings
  • Develop and contribute to internal tooling — automation scripts, reporting utilities, and workflow improvements using Python, Bash, or similar
  • Participate in QA review cycles, providing structured feedback on findings, CVSS scoring accuracy, and report quality
  • Mentor junior testers through technical guidance and finding review
  • Collaborate with delivery leadership on scoping, client kickoff calls, and remediation guidance

Benefits

  • Competitive compensation and performance-based equity opportunities
  • Flexible work hours with hybrid remote options
  • Opportunity to work with international cybersecurity experts
  • Strong career progression in a rapidly expanding early-stage company
  • Exposure to cutting-edge research, tools, and techniques in offensive security

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Mid Level

Education Level

No Education Listed

Job Search Resources

Similar Senior Penetration Tester (US) job opportunities

Penetration Tester
CACI
CACI • Aberdeen Proving Ground, MD13d • Onsite
Penetration Tester
Dark Wolf Solutions
Dark Wolf Solutions • Herndon, VA1d • $130,000 - $145,000 • Hybrid
Penetration Tester
CACI
CACI • Chantilly, VA13d • Onsite
Senior ISSE/Penetration Tester
BAE Systems
BAE Systems • Annapolis Junction, MD2d • $149,603 - $254,317
Consultant, Penetration Tester
Coalfire
Coalfire11d • $64,000 - $117,000 • Hybrid
Application Penetration Tester
Booz Allen Hamilton
Booz Allen Hamilton • Chantilly, VA10d • Remote

Tools

Templates & Examples

Resources

Comparisons

Company

Over 4 Million Users
Free AI tools and resources to help you land your next job, faster
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service