Security Assurance Penetration Tester
$71.6k - $119.4kRELX
Are you a collaborative Penetration Tester looking to work for a mission driven global organization? About the role - This role supports the offensive security function within Elsevier's Security Engineering team. You will perform hands-on security testing and peer review activities, validate vulnerabilities and security controls, and support the automation of security assurance processes. This is a hands-on role for a motivated security professional eager to grow in a collaborative, fast-paced environment. About the team - The Security Assurance team supports the third-party penetration testing program, security control validation, and ongoing offensive security testing activities. Responsibilities Tracking and triaging findings from third-party assessments, ensuring timely follow-up and remediation tracking. Collaborating with development, platform, and product teams to communicate findings, track remediation efforts, and improve overall security posture. Facilitating post-assessment reviews and lessons learned sessions with development teams to identify recurring security issues and promote secure development practices. Maintaining program documentation, test records, and reporting artifacts. Conducting penetration testing of web applications, APIs, cloud environments, and internal systems, escalating complex testing scenarios as needed. Performing peer review of penetration testing deliverables, including test plans, findings, and final reports. Participating in scoping exercises and contributing to the selection of appropriate testing methodologies. Supporting security assessments of GenAI-powered applications and features, including LLM integrations, RAG pipelines, and AI agents. Assisting in testing for AI-specific vulnerabilities such as prompt injection, jailbreaking, insecure output handling, model data leakage, and training data poisoning. Contributing to the development of internal GenAI security testing checklists and methodologies, aligned with frameworks such as OWASP Top 10 for LLMs. Requirements Experience in information security, penetration testing, or a related field. Experience or coursework in software development, DevOps, or scripting is highly desirable. At least one relevant security certification (e.g., Security+, eJPT, PNPT, CEH, or equivalent) preferred; advanced offensive security certifications such as OSCP are a plus. Foundational understanding of web application architecture, networking, and operating system security. Familiarity with common penetration testing tools (e.g., Burp Suite, Nmap, Metasploit, Nuclei, or equivalent). Working knowledge of OWASP Top 10, common CVEs, and vulnerability scoring frameworks (CVSS). Scripting ability in at least one language (Python, Bash, PowerShell, or similar); development experience is a strong plus. Basic understanding of cloud environments (AWS, Azure, or GCP) and associated security considerations. Exposure to SAST/DAST tools and secure code review practices is desirable. Awareness of GenAI security risks (prompt injection, LLM abuse, insecure AI integrations) Elsevier is a renowned global information analytics company that primarily focuses on providing scientific, technical, and medical (STM) research content, tools, and services. It is one of the largest publishers of academic journals and scholarly literature in the world. Elsevier operates in various domains, including science, technology, medicine, social sciences, and more. They publish a vast number of peer-reviewed journals covering a wide range of disciplines. These journals act as platforms for researchers and academics to share their findings and contribute to the advancement of knowledge in their respective fields. In addition to publishing, Elsevier offers a suite of digital solutions and services to support researchers, scientists, and professionals in their work. They provide online platforms like ScienceDirect, Scopus, and Mendeley, which offer access to a vast repository of scholarly articles, research papers, and other scientific content. These platforms often serve as essential resources for software developers seeking to stay updated with the latest scientific advancements. U.S. National Base Pay Range: $71,600 - $119,400. Geographic differentials may apply in some locations to better reflect local market rates. If performed in Colorado, the base pay range is $71,600 - $119,400.If performed in New York, the base pay range is $78,700 - $131,400.If performed in New York City, the base pay range is $85,900 - $143,300.If performed in Rochester, NY, the base pay range is $71,600 - $119,400.If performed in New Jersey, the base pay range is $84,546 - $135,054. This job is eligible for an annual incentive bonus. Application deadline is 09/10/2026. We know your well-being and happiness are key to a long and successful career. We are delighted to offer country specific benefits. Click here to access benefits specific to your location. We are committed to providing a fair and accessible hiring process. If you have a disability or other need that requires accommodation or adjustment, please let us know by completing our Applicant Request Support Form or please contact View phone number on click.appcast.io. Criminals may pose as recruiters asking for money or personal information. We never request money or banking details from job applicants. Learn more about spotting and avoiding scams here. Please read our Candidate Privacy Policy. We are an equal opportunity employer: qualified applicants are considered for and treated during employment without regard to race, color, creed, religion, sex, national origin, citizenship status, disability status, protected veteran status, age, marital status, sexual orientation, gender identity, genetic information, or any other characteristic protected by law. USA Job Seekers: EEO Know Your Rights. RELX is a global provider of information-based analytics and decision tools for professional and business customers, enabling them to make better decisions, get better results and be more productive. Our purpose is to benefit society by developing products that help researchers advance scientific knowledge; doctors and nurses improve the lives of patients; lawyers promote the rule of law and achieve justice and fair results for their clients; businesses and governments prevent fraud; consumers access financial services and get fair prices on insurance; and customers learn about markets and complete transactions. Our purpose guides our actions beyond the products that we develop. It defines us as a company. Every day across RELX our employees are inspired to undertake initiatives that make unique contributions to society and the communities in which we operate.
$86.8k - $198k
...possible vulnerabilities while using penetration testing tools and techniques to ensure security of computer systems,... ...OSCP ) , HTB Certified Penetration Tester Spe cia list ( CPTS ) , eLearnSecurity... ...) , GIAC Global Information Assurance Penetration Tester ( GPEN ) , or...SuggestedFull timeContract workPart timeLocal areaRemote work$113.2k - $237.8k
...Job ID301872Job Title: Penetration TesterJob Category: EngineeringTime Type: Full timeMinimum Clearance Required to Start: TS/SCI with... ...Opportunity:Perform computer network evaluations to include penetration security assessments in a cybersecurity red team environment.Be part of...SuggestedContract workWork experience placementImmediate startFlexible hours$87.1k - $157.45k
...Job Overview Department of Homeland Security (DHS), Customs and Border Protection (CBP) Security Operations Center (SOC) is a US... ...violations. We are seeking a highly skilled and experienced Penetration Tester to join our team supporting the CBP SOC. This candidate will...SuggestedLocal area$113.2k - $237.8k
...Job Title: Penetration Tester Job Category: Engineering Time Type: Full time Minimum Clearance Required to Start: TS/SCI with Polygraph Employee... ...Perform computer network evaluations to include penetration security assessments in a cybersecurity red team environment....SuggestedFull timeWork experience placement- ...Secret Clearance Certifications: Holds or is working toward penetration testing and offensive security certifications appropriate for DoD environments, such... ...Position Description PingWind is seeking a Penetration Tester responsible for supporting authorized penetration...SuggestedTemporary workFlexible hours
$140k - $160k
...recognized leader in navigating technology and security challenges, Foxhole delivers mission-... ...Technology is seeking a Senior Pen Tester to join our growing team in support of Security... ...are trained and knowledgeable of the penetration testing tools and in the ability to...Contract workWork experience placementWork at officeRemote workFlexible hours$77.6k - $176k
...Number: R0236862 The Opportunity Support mission‑critical national security programs as the lead Information Systems Security Officer (... ...activities. You will rely on cybersecurity and Information Assurance (IA) background to be a technical leader and support Enterprise...Local area$90k - $140k
...Overview Steampunk wants you to be a SeniorInformation System Security Officer (ISSO) . The primary responsibilities for the position... ...[WAN]) Knowledge and experience with information security and assurance principles (e.g., Defense‑in‑depth) and associated supporting...Local areaFlexible hours$100k - $140k
...accommodation or an alternative application process. Information System Security Officer Full‑time Regular Professional Chantilly, VA, US 5... ..., controls, and documentation Create and maintain information assurance documentation including System Security Plans and Body of...Full timeTemporary workFor contractorsWork at officeLocal areaImmediate startRemote workFlexible hours- ...Information Systems Security Officer (ISSO) Mantis Security is a leading specialty firm of high caliber talent who specialize in Cyber Operations, Cyber Defense, Information Assurance, Software Development, DevSecOps, Security Engineering, and Cloud Engineering. We enable...Full timeImmediate start
$104.2k - $172.9k
...Information System Security Officer (ISSO) Unlock the secrets of intelligence with MANTECH! Join a dynamic team at the forefront... ..., Certified Information System Manager (CISM), or Information Assurance Management (IAM) Level II proficiency ~ Familiarity with the...Hourly payContract workTemporary workWork experience placementWork at officeLocal areaRemote work$63.3k - $129.7k
Job Title: Mid Security Information Assurance Engineer Job Category: Information Technology Time Type: Full time Minimum Clearance Required to Start: TS/SCI Employee Type: Regular Percentage of Travel Required: Up to 10% Type of Travel: Continental US Anticipated Posting...Full timeContract workWork experience placementFlexible hours- Everforth ECS is seeking a Senior Security Operations Center Engineer - Security Tooling to work in the National Capital Region covering... ...sustained cyber defense effectiveness in support of mission assurance and information advantage. Performs other duties as assigned....Contract workLocal area
$5,000 per month
...Security Engineer This position requires U.S. citizenship and an active U.S. DoD clearance. Candidates who are not U.S. citizens... ...# Derive, document and/or identify system CONOPS for Mission Assurance Categorization per DoDI 8500.2. # Research and recommend logical...Work at office$86.8k - $198k
...years of experience with cyber penetration testing or developing risk... ...adversarial tactics to conduct security testing 3+ years of... ..., HTB Certified Penetration Tester Spe cia list ( CPTS ) , eLearn... ...) , GIAC Global Information Assurance Penetration Tester ( GPEN ) ,...Full timeContract workPart timeLocal areaRemote work- ...Sr. Penetration Tester Job Locations US ID 2026-4358 Category... ...applications, systems and enclaves Identifies security flaws in computing platforms and applications... ...Hacker (CEH) Global Information Assurance Certification Penetration Tester (GPEN...Full timeTemporary workFor contractorsRemote workFlexible hours
- ...L3Harris Technologies currently has an opening for a User Acceptance Tester with expertise in Test and Integration for an important National Security Program. The successful candidate will support a high performing team of Government and Contractor professionals by testing...For contractorsLocal area
- ...smoothly and effectively. Responsibilities The Infrastructure Security Engineer is responsible for protecting the organization's core... ...Defense Information Systems must possess or receive Information Assurance awareness by completing the Security + Certification as a...Civilian ContractorFull timePart timeWork at officeImmediate start
$68.6k - $132.2k
...POSITION SPECIFICS We are searching for a Cyber Information Assurance Analyst to join the Risk Management Department, in Reston, VA... ...to implement effective cybersecurity programs and determines security controls and policies based on best practices, regulations,...Full timeFor contractorsWork experience placementRemote workFlexible hours$104.8k - $192.2k
...Government and Public Sector – Cybersecurity – Penetration Tester – Senior Consultant From strategy... ...and in some cases operate integrated security operations for our clients. We... ...and executive audiences. Quality Assurance and Reporting - Review, validate, and...Full timeFor contractorsSummer holidayWork at officeLocal areaFlexible hours- ...to serve as a critical component of our nation’s safety and security. Make an impact by using your expertise to protect our country... ...Seize your opportunity to make a personal impact as a Penetration Tester supporting customer activities. GDIT is your place to make meaningful...
$110k - $130k
...Overview SYSTEMS SECURITY ENGINEER (RDTE) Bowhead is seeking an experienced Systems Security Engineer to join our team in Dahlgren, VA... ...integrity, availability, authentication, non-repudiation). Tenable Assured Compliance Assessment Solution (ACAS) Trellix Endpoint Security...- ...they'll be doing work that matters at the heart of the national security mission, exploring new possibilities at the cutting edge of... ..._____________ We are seeking a highly skilled and proactive Penetration Testing SME to join our Cybersecurity team. As a Penetration Testing...Temporary workLocal areaImmediate start
- ...Overview Systems Planning and Analysis, Inc. (SPA) delivers high-impact, technical solutions to complex national security issues. With over 50 years of business expertise and consistent growth, we are known for continuous innovation for our government customers, in both...Work experience placementImmediate start
- ...services and solutions to mission-critical US Government programs and the Intel Community. Position Location: Chantilly, VA Who are you? Security-cleared Professional: A TS/SCI is required to be considered for this position. Education and Experience: You have a Bachelor's...Temporary workWork at office
$100k - $210k
...Job Description Job Description Task Force Talent is seeking a Penetration Tester with an active TS/SCI FSP security clearance . Target salary range is $100K - $210K , depending on experience level. Our client for this role is a small company with very unique...Full timeContract workFor contractorsWork at office$78.4k - $173.5k
...Job Order Job order - J0925-0453 - Permanent Full Time Title Information Systems Security Officer (ISSO) - Senior Location Arlington, Virginia, United States Job Overview CGI Federal has an exciting opportunity for an ISSO within our Intel sector advancing the national...Permanent employmentFull timeLocal area$101k - $152k
Applied Information Sciences, Inc in Alexandria, Virginia is seeking a Senior Security Engineer to conduct comprehensive digital forensic examinations across various systems. This role includes responsibility for incident management, malware analysis, and deep investigations...Contract work$160.2k - $195.8k
...Title: Senior Information System Security Officer (ISSO) Belong. Connect. Grow. with KBR! KBR’s National Security Solutions team provides high-end engineering and advanced technology solutions to our customers in the intelligence and national security communities...Temporary workLocal areaRelocation packageFlexible hours$104k - $166k
Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver...Full timeContract workTemporary workInterim roleCurrently hiringWork at officeLocal areaShift work
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Security Assurance Penetration Tester. Be the first to apply!

