Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Penetration Tester

Ova Technologies

Penetration Tester (Ethical Hacker)

We are seeking a skilled Penetration Tester to identify, assess, and help remediate security vulnerabilities across applications, networks, cloud environments, and enterprise systems. The ideal candidate will perform authorized security assessments, simulate real-world cyberattacks, and provide actionable recommendations to strengthen the organization's security posture. This role requires a deep understanding of offensive security techniques, vulnerability management, and security best practices.

Key Responsibilities:

  • Conduct penetration tests on web applications, APIs, mobile applications, networks, cloud environments, and infrastructure.
  • Perform vulnerability assessments and security audits to identify weaknesses.
  • Simulate real-world attack scenarios to evaluate security controls and defenses.
  • Analyze findings and provide detailed reports with risk ratings and remediation recommendations.
  • Validate vulnerability fixes through retesting activities.
  • Conduct security reviews of system architectures and application designs.
  • Assist development and infrastructure teams in implementing security best practices.
  • Perform reconnaissance, threat modeling, and attack surface analysis.
  • Stay informed about emerging threats, vulnerabilities, and attack techniques.
  • Support red team exercises and security awareness initiatives.
  • Ensure testing activities comply with legal, regulatory, and organizational requirements.

Required Skills:

  • Strong understanding of cybersecurity principles and attack methodologies.
  • Experience with web application, network, and cloud security testing.
  • Knowledge of common vulnerabilities such as OWASP Top 10 and MITRE Telecommunication&CK.
  • Strong analytical and problem-solving skills.
  • Ability to communicate technical findings to both technical and non-technical stakeholders.
  • Experience writing professional penetration testing reports.

Technical Skills:

  • Security Testing Tools: Burp Suite, OWASP ZAP, Nessus, Nmap, Metasploit
  • Web Application Security Testing
  • API Security Testing
  • Mobile Security Testing (Android/iOS)
  • Network Security Assessment
  • Cloud Security (AWS, Azure, GCP)
  • Operating Systems: Linux, Windows
  • Scripting Languages: Python, PowerShell, Bash
  • Vulnerability Management Tools: Qualys, Rapid7, Tenable
  • Security Frameworks: OWASP, NIST, CIS Controls, MITRE Telecommunication&CK

Qualifications:

  • Bachelor's degree in Cybersecurity, Information Security, Computer Science, Information Technology, or a related field.
  • Professional certifications are highly preferred:
    • CEH (Certified Ethical Hacker)
    • OSCP (Offensive Security Certified Professional)
    • GPEN (GIAC Penetration Tester)
    • PNPT (Practical Network Penetration Tester)
    • CISSP (Preferred)

Experience:

  • 3–7 years of experience in Penetration Testing, Ethical Hacking, Red Teaming, or Cybersecurity.
  • Hands-on experience conducting application, network, and cloud security assessments.
  • Experience using industry-standard penetration testing tools and methodologies.
  • Familiarity with Agile, DevSecOps, and Secure SDLC practices.

Preferred Qualifications:

  • Experience with Red Team and Purple Team engagements.
  • Knowledge of Active Directory security and privilege escalation techniques.
  • Experience with container and Kubernetes security assessments.
  • Understanding of cloud-native security controls and architecture.
  • Experience performing source code security reviews and secure coding assessments.

Preferred Qualities:

  • Strong investigative and analytical mindset.
  • High attention to detail and commitment to ethical standards.
  • Excellent report writing and presentation skills.
  • Ability to work independently and collaboratively.
  • Passion for cybersecurity research and continuous learning.

Employment Type:

Full-Time

Location:

Remote / Hybrid / On-site

Nice to Have:

  • Experience with bug bounty programs and responsible disclosure processes.
  • Knowledge of Security Operations Center (SOC) workflows and incident response.
  • Familiarity with threat intelligence platforms and threat hunting.
  • Experience testing enterprise SaaS, FinTech, Healthcare, Government, or Cloud-native applications.
  • Contributions to cybersecurity research, security blogs, open-source tools, or conference presentations.
Vacancy posted 3 days ago
Similar jobs that could be interesting for youBased on the Penetration Tester in New York, NY vacancy
  • $140k - $160k

     ...more about a career in technology and data at Fitch? Visit: Fitch Group is currently seeking a Senior AI Penetration Tester based out of our New York office. How You'll Make an Impact: We are seeking a Senior AI Penetration Tester to... 
    Suggested
    Temporary work
    Work at office
    Immediate start
    2 days per week
    3 days per week

    Fitch Group

    New York, NY
    17 hours ago
  • $1,000 per month

     ...Join Our Team as a Website Tester at Little Wheel Little Wheel is a gambling technology company focused on researching and building products that put players first. We are currently hiring Website Testers across Michigan, New Jersey, Pennsylvania, and West Virginia... 
    Suggested
    Extra income
    Temporary work
    Second job
    Currently hiring
    Immediate start
    Work from home
    Flexible hours

    Little Wheel

    New York, NY
    3 days ago
  • $500 per month

     ...Become a Professional Game Tester We're looking for passionate gamers to join our elite team of mobile game testers. Get paid to play and test the latest games before they launch. $500+ Avg Monthly Pay 5-10 Hours/Week 100% Remote Position Requirements:... 
    Suggested
    Remote work
    10 hours per week
    Flexible hours

    Babki

    New York, NY
    10 days ago
  •  ...A mobile game testing company is seeking a Freelance Software Tester to explore and analyze mobile applications. In this remote role, you'll provide critical feedback on app performance and usability. This position is ideal for beginners, requires no prior experience,... 
    Suggested
    Freelance
    Remote work

    Review Pays

    New York, NY
    5 days ago
  • $35 per hour

     ...A mobile games company is seeking a Junior Software Tester to dive into the world of mobile games and enhance player experiences. This entry-level position allows you to work remotely, explore apps on your devices, and provide valuable feedback on functionality and user... 
    Suggested
    Hourly pay
    Remote work

    Review Pays

    New York, NY
    5 days ago
  • A premier health institution in New York is looking for a Sr. II Security Analyst specializing in vulnerabilities. This role involves conducting security assessments, analyzing security data, and coordinating remediation efforts. Candidates should have a Bachelor's degree...

    NYU Langone

    New York, NY
    2 days ago
  • $165k - $185k

    About Betterment Betterment is a leading, technology-driven financial services company that offers investing, savings and retirement solutions for retail investors and investment advisors as well as financial wellness solutions, including a 401(k) for small and medium...
    Temporary work
    For contractors
    Summer holiday
    Work at office
    Local area
    Flexible hours

    Betterment

    New York, NY
    1 day ago
  • $104k - $156k

     ...typical, to allow for future meaningful salary growth in this position. Required Skills: Endpoint Security, Network Security, Penetration Testing, Security Architecture Design, Security Automation, Security Information, Security Information and Event Management (SIEM... 
    Remote work

    Relativity

    New York, NY
    2 days ago
  •  ...Support secure development practices for in-house applications - Assist with annual security assessments, including: - Penetration Testing - Vulnerability Assessment - IT Risk Assessment Qualifications What's On Offer Apply online or... 

    CESNA GROUP INC

    New York, NY
    5 days ago
  • Job Title Responsibilities: • Provide support for all corporate and enclave firewalls, application delivery controllers, RADIUS, RSA. • Develop and implement firewall changes for supported networks. • Evaluate requested changes for possible Cyber-Security Threats...
    Work experience placement
    Local area
    Rotating shift

    Samprasoft

    New York, NY
    5 days ago
  • $95.86k - $208.27k

     ...expand your capabilities, then consider a career in Advisory. KPMG is currently seeking a Senior Specialist, MAST Application Penetration Tester to join our Managed Services practice. Responsibilities: Conduct manual application penetration testing against API'... 
    Full time
    H1b
    Local area

    KPMG

    New York, NY
    2 days ago
  • Digital Forensic Analyst Employment Type: Full-Time, Mid-Level Department: Forensics CGS is seeking a Digital Forensic Analyst whose primary focus will be on the preservation & collection of mobile device and cloud‑stored data. This candidate should be fluent in a broad...
    Full time
    Work at office
    Remote work
    Flexible hours

    Dormont Manufacturing Company

    New York, NY
    2 days ago
  •  ...primary responsibility will be to plan, execute, and report on penetration tests targeting high-impact applications, platforms, and...  ...peer reviews of penetration test reports and mentoring junior testers. ~ Continuous learner who keeps up with the latest offensive... 

    JPMorgan Chase & Co.

    New York, NY
    a month ago
  • Digital Forensic Analyst Employment Type: Full-Time, Mid-Level Department: Forensics CGS is seeking a Digital Forensic Analyst whose primary focus will be on the preservation & collection of mobile device and cloud‑stored data. The ideal candidate should be fluent in a...
    Full time
    Work at office
    Remote work
    Flexible hours

    CGS Federal (Contact Government Services)

    New York, NY
    1 day ago
  • About the Company Rain makes the next generation of payments possible across the globe. We're a lean and mighty team of passionate builders and veteran founders. Our infrastructure makes stablecoins usable in the real-world by powering card transactions, cross-border...
    Work at office
    Work from home
    Flexible hours

    Rain

    New York, NY
    1 day ago
  • Title: Vulnerability Management Analyst Work Arrangement: Remote Duration: 12-Month Contract Experience Range: 8-10 years Our client is seeking a Vulnerability Management Analyst to validate and triage vulnerability findings, assess risk-based prioritization...
    Contract work
    Remote work

    RIT Solutions, Inc.

    New York, NY
    1 day ago
  • A consulting firm specializing in risk management is inviting speculative applications for Business Continuity professionals of all levels. This role can be remote or onsite from locations like New York City, Seattle, San Francisco, or Austin. Candidates should have a bachelor...
    Remote work

    Control Risks

    New York, NY
    2 days ago
  • $347k

    About the Team Security is at the foundation of OpenAI's mission to ensure that artificial general intelligence benefits all of humanity. The Security team protects OpenAI's technology, people, and products. We are technical in what we build but are operational...

    OpenAI

    New York, NY
    5 days ago
  • Job Title Required Skills: ~10-12+ years of QA engineering experience, with a strong track record in Agile SDLC teams, ideally working with CI/CD pipelines. ~ Experience in the financial domain a plus. ~ Proficiency in Java programming, with a focus on Behavior...

    Syntricate Technologies

    New York, NY
    2 days ago
  • $120k - $200k

    Information System Security Officer (ISSO) Employment Type: Full-Time, Mid-Level Department: Administrative and Logistics Support As a FSR ISSO, you will be embedded on-site with U.S. Government customers to ensure the secure, compliant operation of a production-grade ...
    Full time
    Flexible hours

    Contact-Government-Services,-LL

    New York, NY
    2 days ago
  • $125k - $160k

    Key Responsibilities Responsible for delivering the programme/plans to ensure the Firm’s information assets are adequately protected. Duties will include some or all of the following: Act as a trusted advisor on Information Security related activities. Deliver programmes...

    Dormont Manufacturing Company

    New York, NY
    2 days ago
  • Company Description Job Description The Department of Records and Information Services is seeking to hire a Computer Systems Manager Non-Manager to serve as the Chief Information Security Officer (CISO). The Computer Systems Manager-Non-Manager will be...
    Permanent employment
    Full time
    Work at office
    Shift work
    Weekend work
    Afternoon shift

    City of New York

    New York, NY
    20 minutes ago
  • $300k - $375k

     ...programs (e.g., SOC, ISO27001, GDPR) Conduct and improve security monitoring, incident response, and threat hunting functions Direct penetration testing and vendor management activities Lead the engineering of secure network and identity management systems in the cloud... 
    Full time
    Work at office
    Worldwide

    DriveWealth

    New York, NY
    2 days ago
  • SECURITY CLEARANCE REQUIREMENT: TS, WITH SCI ELIGIBILITY POSITION REQUIRES US CITIZENSHIP Position Title: Information System Security Officer (ISSO) II Location: Robbins AFB, GA Position Description: The ISSO is responsible for ensuring the appropriate operational security...
    Work at office

    Redtracetech

    New York, NY
    1 day ago
  • $170k

    Job Description About TRS: Since 1917, the Teachers’ Retirement System of the City of New York (TRS) has been securing better futures for NYC educators. With a pension fund valued at approximately $123 billion, TRS serves over 274,000 members, providing them with...
    Full time

    City of New York

    New York, NY
    17 hours ago
  • $350k - $400k

    At Compass, our mission is to help everyone find their place in the world. Founded in 2012, we’re revolutionizing the real estate industry with our end-to-end platform that empowers residential real estate agents to deliver exceptional service to seller and buyer clients...
    Flexible hours

    Compass

    New York, NY
    1 day ago
  • $99k - $232k

    Specialty/Competency: Cybersecurity & Privacy Industry/Sector: Not Applicable Time Type: Full time Travel Requirements: Up to 40% At PwC, our people in cybersecurity focus on protecting organizations from cyber threats through advanced technologies and strategies...
    Full time
    H1b

    PwC

    New York, NY
    1 day ago
  • $127k - $225k

    Job Description Director, Cyber Security Engineer At BNY, our culture allows us to run our company better and enables employees' growth and success. As a leading global financial services company at the heart of the global financial system, we influence nearly ...
    Temporary work
    Remote work
    Worldwide
    Flexible hours

    BNY Mellon

    New York, NY
    4 days ago
  • IT Security Manager Primary Purpose of the Role To manage and advance the IT security, risk and audit compliance program including planning, scheduling, coordinating, reviewing and reporting of the work of the department; to supervise, coach and train staff; to develop...
    Work at office

    Hispanic Alliance for Career Enhancement

    New York, NY
    2 days ago
  • $68.4k - $105.9k

    Highmark Health is looking for a Systems Administrator experienced with Epic applications. The successful candidate will configure, support, and rollout Epic systems, requiring 3 years of systems administration experience. Preferred qualifications include experience in...
    Work at office
    Remote work

    Highmark Health

    New York, NY
    1 day ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Penetration Tester. Be the first to apply!