Senior Penetration Tester (Remote)

Perform network penetration, web application testing, source code reviews, threat analysis, and social-engineering assessments Develop detailed threat models Thoroughly document techniques, tactics and proofs of concept used during security testing and red team exercises Develop comprehensive and accurate reports and presentations for both technical and executive audiences 5+ years in penetration testing across web apps, APIs, containers, networks, OS, databases, and cloud platforms Strong experience in technical writing and producing detailed security reports Deep understanding of offensive security operations and secure development practices Familiar with OWASP Top 10, NIST, CIS, MITRE ATT&CK, and threat actor methodologies Skilled in scripting languages: Python, PowerShell, Ruby, Bash Advanced exploit development and evasion techniques Proficient in tools: Kali, Metasploit, Nessus, Nuclei, Nmap, Burp Suite, PowerSploit, Impacket Flexible, analytical, and adaptable; degree or certifications (OSCP, OSEP, etc.) preferred but not required Proven ability to work independently and manage multiple remote projects Strong collaboration and stakeholder engagement skills Creative thinker with a passion for innovation and continuous learning Skilled in post-compromise techniques and lateral movement Deep understanding of security frameworks: OWASP, PTES, NIST SP 800-115 Proficient in Metasploit, Burp Suite, Nmap, Wireshark Solid knowledge of OS, network protocols, and application security Experienced in assessing web apps, databases, and infrastructure Excellent analytical, reporting, and communication skills Committed to ethical conduct, confidentiality, and data privacy