Penetration Tester
Ova Technologies
Penetration Tester (Ethical Hacker)
We are seeking a skilled Penetration Tester to identify, assess, and help remediate security vulnerabilities across applications, networks, cloud environments, and enterprise systems. The ideal candidate will perform authorized security assessments, simulate real-world cyberattacks, and provide actionable recommendations to strengthen the organization's security posture. This role requires a deep understanding of offensive security techniques, vulnerability management, and security best practices.
Key Responsibilities:
- Conduct penetration tests on web applications, APIs, mobile applications, networks, cloud environments, and infrastructure.
- Perform vulnerability assessments and security audits to identify weaknesses.
- Simulate real-world attack scenarios to evaluate security controls and defenses.
- Analyze findings and provide detailed reports with risk ratings and remediation recommendations.
- Validate vulnerability fixes through retesting activities.
- Conduct security reviews of system architectures and application designs.
- Assist development and infrastructure teams in implementing security best practices.
- Perform reconnaissance, threat modeling, and attack surface analysis.
- Stay informed about emerging threats, vulnerabilities, and attack techniques.
- Support red team exercises and security awareness initiatives.
- Ensure testing activities comply with legal, regulatory, and organizational requirements.
Required Skills:
- Strong understanding of cybersecurity principles and attack methodologies.
- Experience with web application, network, and cloud security testing.
- Knowledge of common vulnerabilities such as OWASP Top 10 and MITRE Telecommunication&CK.
- Strong analytical and problem-solving skills.
- Ability to communicate technical findings to both technical and non-technical stakeholders.
- Experience writing professional penetration testing reports.
Technical Skills:
- Security Testing Tools: Burp Suite, OWASP ZAP, Nessus, Nmap, Metasploit
- Web Application Security Testing
- API Security Testing
- Mobile Security Testing (Android/iOS)
- Network Security Assessment
- Cloud Security (AWS, Azure, GCP)
- Operating Systems: Linux, Windows
- Scripting Languages: Python, PowerShell, Bash
- Vulnerability Management Tools: Qualys, Rapid7, Tenable
- Security Frameworks: OWASP, NIST, CIS Controls, MITRE Telecommunication&CK
Qualifications:
- Bachelor's degree in Cybersecurity, Information Security, Computer Science, Information Technology, or a related field.
- Professional certifications are highly preferred:
- CEH (Certified Ethical Hacker)
- OSCP (Offensive Security Certified Professional)
- GPEN (GIAC Penetration Tester)
- PNPT (Practical Network Penetration Tester)
- CISSP (Preferred)
Experience:
- 3–7 years of experience in Penetration Testing, Ethical Hacking, Red Teaming, or Cybersecurity.
- Hands-on experience conducting application, network, and cloud security assessments.
- Experience using industry-standard penetration testing tools and methodologies.
- Familiarity with Agile, DevSecOps, and Secure SDLC practices.
Preferred Qualifications:
- Experience with Red Team and Purple Team engagements.
- Knowledge of Active Directory security and privilege escalation techniques.
- Experience with container and Kubernetes security assessments.
- Understanding of cloud-native security controls and architecture.
- Experience performing source code security reviews and secure coding assessments.
Preferred Qualities:
- Strong investigative and analytical mindset.
- High attention to detail and commitment to ethical standards.
- Excellent report writing and presentation skills.
- Ability to work independently and collaboratively.
- Passion for cybersecurity research and continuous learning.
Employment Type:
Full-Time
Location:
Remote / Hybrid / On-site
Nice to Have:
- Experience with bug bounty programs and responsible disclosure processes.
- Knowledge of Security Operations Center (SOC) workflows and incident response.
- Familiarity with threat intelligence platforms and threat hunting.
- Experience testing enterprise SaaS, FinTech, Healthcare, Government, or Cloud-native applications.
- Contributions to cybersecurity research, security blogs, open-source tools, or conference presentations.
$140k - $160k
...more about a career in technology and data at Fitch? Visit: Fitch Group is currently seeking a Senior AI Penetration Tester based out of our New York office. How You'll Make an Impact: We are seeking a Senior AI Penetration Tester to...SuggestedTemporary workWork at officeImmediate start2 days per week3 days per week$1,000 per month
...Join Our Team as a Website Tester at Little Wheel Little Wheel is a gambling technology company focused on researching and building products that put players first. We are currently hiring Website Testers across Michigan, New Jersey, Pennsylvania, and West Virginia...SuggestedExtra incomeTemporary workSecond jobCurrently hiringImmediate startWork from homeFlexible hours$500 per month
...Become a Professional Game Tester We're looking for passionate gamers to join our elite team of mobile game testers. Get paid to play and test the latest games before they launch. $500+ Avg Monthly Pay 5-10 Hours/Week 100% Remote Position Requirements:...SuggestedRemote work10 hours per weekFlexible hours- ...A mobile game testing company is seeking a Freelance Software Tester to explore and analyze mobile applications. In this remote role, you'll provide critical feedback on app performance and usability. This position is ideal for beginners, requires no prior experience,...SuggestedFreelanceRemote work
$35 per hour
...A mobile games company is seeking a Junior Software Tester to dive into the world of mobile games and enhance player experiences. This entry-level position allows you to work remotely, explore apps on your devices, and provide valuable feedback on functionality and user...SuggestedHourly payRemote work- A premier health institution in New York is looking for a Sr. II Security Analyst specializing in vulnerabilities. This role involves conducting security assessments, analyzing security data, and coordinating remediation efforts. Candidates should have a Bachelor's degree...
$165k - $185k
About Betterment Betterment is a leading, technology-driven financial services company that offers investing, savings and retirement solutions for retail investors and investment advisors as well as financial wellness solutions, including a 401(k) for small and medium...Temporary workFor contractorsSummer holidayWork at officeLocal areaFlexible hours$104k - $156k
...typical, to allow for future meaningful salary growth in this position. Required Skills: Endpoint Security, Network Security, Penetration Testing, Security Architecture Design, Security Automation, Security Information, Security Information and Event Management (SIEM...Remote work- ...Support secure development practices for in-house applications - Assist with annual security assessments, including: - Penetration Testing - Vulnerability Assessment - IT Risk Assessment Qualifications What's On Offer Apply online or...
- Job Title Responsibilities: • Provide support for all corporate and enclave firewalls, application delivery controllers, RADIUS, RSA. • Develop and implement firewall changes for supported networks. • Evaluate requested changes for possible Cyber-Security Threats...Work experience placementLocal areaRotating shift
$95.86k - $208.27k
...expand your capabilities, then consider a career in Advisory. KPMG is currently seeking a Senior Specialist, MAST Application Penetration Tester to join our Managed Services practice. Responsibilities: Conduct manual application penetration testing against API'...Full timeH1bLocal area- Digital Forensic Analyst Employment Type: Full-Time, Mid-Level Department: Forensics CGS is seeking a Digital Forensic Analyst whose primary focus will be on the preservation & collection of mobile device and cloud‑stored data. This candidate should be fluent in a broad...Full timeWork at officeRemote workFlexible hours
- ...primary responsibility will be to plan, execute, and report on penetration tests targeting high-impact applications, platforms, and... ...peer reviews of penetration test reports and mentoring junior testers. ~ Continuous learner who keeps up with the latest offensive...
- Digital Forensic Analyst Employment Type: Full-Time, Mid-Level Department: Forensics CGS is seeking a Digital Forensic Analyst whose primary focus will be on the preservation & collection of mobile device and cloud‑stored data. The ideal candidate should be fluent in a...Full timeWork at officeRemote workFlexible hours
- About the Company Rain makes the next generation of payments possible across the globe. We're a lean and mighty team of passionate builders and veteran founders. Our infrastructure makes stablecoins usable in the real-world by powering card transactions, cross-border...Work at officeWork from homeFlexible hours
- Title: Vulnerability Management Analyst Work Arrangement: Remote Duration: 12-Month Contract Experience Range: 8-10 years Our client is seeking a Vulnerability Management Analyst to validate and triage vulnerability findings, assess risk-based prioritization...Contract workRemote work
- A consulting firm specializing in risk management is inviting speculative applications for Business Continuity professionals of all levels. This role can be remote or onsite from locations like New York City, Seattle, San Francisco, or Austin. Candidates should have a bachelor...Remote work
$347k
About the Team Security is at the foundation of OpenAI's mission to ensure that artificial general intelligence benefits all of humanity. The Security team protects OpenAI's technology, people, and products. We are technical in what we build but are operational...- Job Title Required Skills: ~10-12+ years of QA engineering experience, with a strong track record in Agile SDLC teams, ideally working with CI/CD pipelines. ~ Experience in the financial domain a plus. ~ Proficiency in Java programming, with a focus on Behavior...
$120k - $200k
Information System Security Officer (ISSO) Employment Type: Full-Time, Mid-Level Department: Administrative and Logistics Support As a FSR ISSO, you will be embedded on-site with U.S. Government customers to ensure the secure, compliant operation of a production-grade ...Full timeFlexible hours$125k - $160k
Key Responsibilities Responsible for delivering the programme/plans to ensure the Firm’s information assets are adequately protected. Duties will include some or all of the following: Act as a trusted advisor on Information Security related activities. Deliver programmes...- Company Description Job Description The Department of Records and Information Services is seeking to hire a Computer Systems Manager Non-Manager to serve as the Chief Information Security Officer (CISO). The Computer Systems Manager-Non-Manager will be...Permanent employmentFull timeWork at officeShift workWeekend workAfternoon shift
$300k - $375k
...programs (e.g., SOC, ISO27001, GDPR) Conduct and improve security monitoring, incident response, and threat hunting functions Direct penetration testing and vendor management activities Lead the engineering of secure network and identity management systems in the cloud...Full timeWork at officeWorldwide- SECURITY CLEARANCE REQUIREMENT: TS, WITH SCI ELIGIBILITY POSITION REQUIRES US CITIZENSHIP Position Title: Information System Security Officer (ISSO) II Location: Robbins AFB, GA Position Description: The ISSO is responsible for ensuring the appropriate operational security...Work at office
$170k
Job Description About TRS: Since 1917, the Teachers’ Retirement System of the City of New York (TRS) has been securing better futures for NYC educators. With a pension fund valued at approximately $123 billion, TRS serves over 274,000 members, providing them with...Full time$350k - $400k
At Compass, our mission is to help everyone find their place in the world. Founded in 2012, we’re revolutionizing the real estate industry with our end-to-end platform that empowers residential real estate agents to deliver exceptional service to seller and buyer clients...Flexible hours$99k - $232k
Specialty/Competency: Cybersecurity & Privacy Industry/Sector: Not Applicable Time Type: Full time Travel Requirements: Up to 40% At PwC, our people in cybersecurity focus on protecting organizations from cyber threats through advanced technologies and strategies...Full timeH1b$127k - $225k
Job Description Director, Cyber Security Engineer At BNY, our culture allows us to run our company better and enables employees' growth and success. As a leading global financial services company at the heart of the global financial system, we influence nearly ...Temporary workRemote workWorldwideFlexible hours- IT Security Manager Primary Purpose of the Role To manage and advance the IT security, risk and audit compliance program including planning, scheduling, coordinating, reviewing and reporting of the work of the department; to supervise, coach and train staff; to develop...Work at office
$68.4k - $105.9k
Highmark Health is looking for a Systems Administrator experienced with Epic applications. The successful candidate will configure, support, and rollout Epic systems, requiring 3 years of systems administration experience. Preferred qualifications include experience in...Work at officeRemote work
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Penetration Tester. Be the first to apply!


