- Conduct penetration tests across Web applications, APIs, Mobile applications, infrastructure, cloud environments, and devices.
- Conduct red team engagements across complex environments (including operational technologies).
- Drive all phases of penetration tests and red team engagements, including Scoping, planning, communications, timelines, and execution of key activities (reconnaissance, vulnerability identification, exploitation, and reporting).
- Develop in-depth reports (issue, severity, impact, remediation recommendations) for penetration tests and red team engagements.
- Develop tools and techniques to automate, scale, and accelerate adversary emulation capabilities and vulnerability discovery.
- Develop exploits and POCs to evade defensive countermeasures and emulate threat actor TTPs.
- Establish and mature team documentation, processes, procedures, and team KPIs.
- Mentor penetration testers, red team members, and other functions where needed to drive unified and holistic outcomes.
- Manage third-party pen test and red team engagements to ensure high-quality products and deliverables.
- Support offensive security research, innovation, and testing across emerging capabilities (e.g. AI, LLM, ML, NLP, Smart Contracts, etc.).
- Execute on projects, objectives, and deliverables in alignments with team vision, mission, and goals.
- Routinely develop and update offensive security documentation, processes, and technologies to adapt to emerging threat landscape.
- Develop automation to scale global offensive capabilities and operational resiliency.
- Collaborate with partner teams, service owners, and senior leadership to influence, prioritize, and drive the resolution of discovered security findings.
- Create and deliver trainings; and participate in security reviews, audits, on-site engagements, and support incidents after-hours when required.
- 5+ years of experience in a technical security role (e.g. Penetration Testing, Red Team, Application Security, Infrastructure Security); or master's degree in computer science/engineering or related cyber field, and 2 years of relevant experience.
- Advanced knowledge of security tools (Burp Suite, Metasploit, Cobalt Strike, Empire, Nmap, bloodhound, etc.) and multiple operating systems (e.g. Windows, Linux).
- Proficient in at least one scripting language (Python, bash, PowerShell) or one programming language (Java, C#, C++).
- Experience in multiple security domains (e.g. Network security, Application Security, Infrastructure Security, Cloud Security, Security operations).
- Experience in aligning threat and vulnerability management efforts to frameworks and control objectives - MITRE ATT&CK, NIST CSF, ISO27001, CIS, OWASP.
- Familiarity with defensive and monitoring technologies such as Intrusion prevention/detection systems (IPS/IDS), Web application firewalls (WAF), security information and event management systems (SIEMs), and endpoint detection/response (EDR) tools, as well as user and entity behavior analytics (UEBA).
- Experience in developing offensive security tooling and automation is a plus.
- A proactive and positive team player who is impact-focused, driven, curious, analytical, and a self-starter.
- Demonstrated ability to autonomously make high-judgment decisions and take calculated risks.
- Ability to establish trust relationships and influence others to positively impact the security posture and the business.
- Flexible and adaptive to support a dynamic and global environment with diverse stakeholders and ambiguity.
- Solid customer orientation with excellent oral and written communication skills in English.
- Must be able to operate extremely well under pressure.
- Ability to lead globally dispersed teams to achieve a unified outcome.
- Experience driving large-scale risk reduction initiatives across Fortune 500 organizations.
- Ability to weigh the relative costs/benefits/trade-offs of potential actions and identify the best resolution.
- Active community engagement: Bug Bounty program engagements, participation in CTFs, or contributions to open source, etc.
- Information Security certifications such as OSCP, OSCE, GPEN, GWAPT, or GXPN are a plus.
- Ability to organize tasks, manage time, and prioritize actions to meet business needs.
-
Penetration Tester
6 days ago
Insight Global Plano, United StatesRequired Skills & Experience · -5+ years of experience in a technical security role · -Advanced knowledge of the Burp Suite · -Experience in one or more C2 framework such as Cobalt Strike · -Proficient in at least one scripting language (Python, bash, PowerShell) or one programmi ...
-
Penetration Tester
3 weeks ago
JPMorgan Chase Bank, N.A. Plano, United StatesAs a Penetration Tester part of the Cybersecurity Operations and Assessments arm of JP Morgan Chase, your role is pivotal in protecting Chase Travel's business operations, client/employee data and the organization's intellectual property. As a in-house Penetration Testing profess ...
-
Penetration Tester
1 week ago
Fortune 500 Companies Plano, United StatesOffensive Security - Sr. Pentester / Red team operator · Job Description · Overview · Within the Cyber Fusion Center, the Offensive Security Team continuously evaluates PepsiCo's cyber security posture through penetration tests and red team engagements to proactively identify gap ...
-
Penetration Tester
2 weeks ago
JPMorgan Chase Bank, N.A. Plano, United StatesAs a Penetration Tester part of the Cybersecurity Operations and Assessments arm of JP Morgan Chase, your role is pivotal in protecting Chase Travel's business operations, client/employee data and the organization's intellectual property. As a in-house Penetration Testing profess ...
-
Penetration Tester
4 weeks ago
Fortune 500 companies Plano, United StatesOffensive Security - Sr. Pentester / Red team operator · Job Description · Overview · Within the Cyber Fusion Center, the Offensive Security Team continuously evaluates PepsiCos cyber security posture through penetration tests and red team engagements to proactively identify g ...
-
Senior Penetration Tester
2 weeks ago
Insight Global Plano, United StatesRequired Skills and Experience · -5+ years of experience in a technical security role · -Advanced knowledge of the Burp Suite · -Experience in one or more C2 framework such as Cobalt Strike · -Proficient in at least one scripting language (Python, bash, PowerShell) or one progra ...
-
Sr. Penetration Tester
4 weeks ago
Motion Recruitment Partners LLC Plano, United StatesSr. Penetration Tester · Plano, Texas · **Hybrid** · Contract · $75/hr - $85/hr · Our Nationally recognized Client offering a top work environment is seeking a Sr level Penetration Tester for an immediate Contract Assignment (possible contract to hire) in the Plano, TX area. · ** ...
-
Sr. Penetration Tester
2 weeks ago
Insight Global Plano, United StatesJob Description · Insight Global is seeking a Sr. Penetration Tester to sit onsite with a fortune 50 client in Plano, TX. Candidates will be working within the Cyber Fusion Center on the Offensive Security Team that is responsible continuously evaluating the cyber security postur ...
-
Senior Penetration Tester
1 week ago
Insight Global Plano, United StatesRequired Skills and Experience · -5+ years of experience in a technical security role · -Advanced knowledge of the Burp Suite · -Experience in one or more C2 framework such as Cobalt Strike · -Proficient in at least one scripting language (Python, bash, PowerShell) or one pr ...
-
Sr. Penetration Tester
2 weeks ago
Insight Global Plano, United StatesInsight Global is seeking a Sr. Penetration Tester to sit onsite with a fortune 50 client in Plano, TX. Candidates will be working within the Cyber Fusion Center on the Offensive Security Team that is responsible continuously evaluating the cyber security posture through penetrat ...
-
Penetration Tester
4 weeks ago
Diverse Lynx Dallas, United StatesPenetration Tester · Dallas, TX (Onsite) · Key Responsibilities:Planning and scoping security testing activities · Analyzing and evaluating vulnerability data from various tools · Conducting manual penetration testing to identify and exploit vulnerabilities · Researching new sec ...
-
Penetration Tester
1 week ago
Syntricate Technologies Dallas, United StatesJob Title: Penetration Tester · Location: Dallas, TX or Tampa, FL · Type: Contract · Desirable Skills: · •Assisting in technical scoping of security testing activities · •curation and assessment of vulnerability data (across multiple platforms/tools) from a manual penetration ...
-
Penetration Tester
3 weeks ago
ZAR IT Solutions Dallas, United StatesApplication Security Associate (Penetration Tester) · 70hr. w2 · Location: Tampa or Dallas-hybrid (3 days onsite) · 6 mths CTH Perm · Business Unit Description · The Technology Risk Management department is responsible for setting strategic direction in the areas of IT Risk and I ...
-
Penetration Tester
3 weeks ago
Diverse Lynx Dallas, United StatesJob Title: Penetration Tester · Location: Dallas, TX, United States · Minimum Experience: 6-8 years · Mandatory Certification: OSCP · Preferred Certifications: CISSP, CPT/CEPT/ CMWAPT · Responsibilities: · • ssist in planning the scope of security testing activities. · • nalyze ...
-
Penetration tester
3 weeks ago
Syntricate Technologies Dallas, United StatesJob Title: Penetration tester · Location: Dallas, TX · Duration: Contract · Job Description: Assisting in technical scoping of security testing activities curation and assessment of vulnerability data (across multiple platforms/tools) from a manual penetration perspective, to foc ...
-
Penetration Tester
5 days ago
Dexian Dallas, United StatesHi, · We are hiring for Penetration test role hybrid to Dallas TX - c2h Role. · Primary Responsibilities: · The Application Security Associate is responsible for the security testing and risk analysis of applications using various application security tools. Interaction with deve ...
-
Penetration Tester
13 hours ago
Dexian Dallas, United StatesHi, · We are hiring for Penetration test role hybrid to Dallas TX - c2h Role. · Primary Responsibilities: · The Application Security Associate is responsible for the security testing and risk analysis of applications using various application security tools. Interaction with deve ...
-
Penetration Tester with OSCP
1 week ago
iTech US, Inc. Dallas, United StatesPosition: Penetration Tester with OSCP · Location: Dallas, TX - Hybrid · Duration: 12 Months · Role Description: · Experience: 6+ Years · Essential Skills: · Role & Responsibilities: · Assisting in technical scoping of security testing activities · curation and assessment of ...
-
Application Penetration Tester
4 days ago
Shiftcode Analytics, Inc Coppell, United StatesAPPLICATION PENETRATION TESTER · 6 MONTHS CONTRACT 2 HIRE · COPPELL, TEXAS · HYBRID (3 DAYS/WEEK) · END–CLIENT DOMAIN– FINANCIAL SERVICES · VISA– USC/GC ONLY · Qualifications · Minimum of 5 years of experience in application penetration testing · Bachelor's degree is desi ...
-
Application Penetration Tester
2 weeks ago
ShiftCode Analytics Coppell, United StatesAPPLICATION PENETRATION TESTER · 6 MONTHS CONTRACT 2 HIRE · COPPELL, TEXAS · HYBRID (3 DAYS/WEEK) · END-CLIENT DOMAIN- FINANCIAL SERVICES · VISA- USC/GC ONLY · Qualifications · • Minimum of 5 years of experience in application penetration testing · • Bachelor's degree is de ...
Penetration Tester - Plano, United States - Fortune 500 companies
Description
Offensive Security - Sr. Pentester / Red team operator
All potential applicants are encouraged to scroll through and read the complete job description before applying.
Job Description
Overview
Within the Cyber Fusion Center, the Offensive Security Team continuously evaluates PepsiCo's cyber security posture through penetration tests and red team engagements to proactively identify gaps and drive mitigations to minimize PepsiCo's cyber risk exposure.
Responsibilities
Accountabilities
Qualifications
Years of experience
Mandatory Technical Skills
Non-technical Skills
Differentiating behaviors
