Penetration Tester

Job Title: Penetration Tester

Location: Remote in Ireland

Job Type: Permanent

This is a brand new key hire for my clients pen-test team. You will help enterprise clients secure their products through development, design, and testing phases. You will be a trusted advisor to product development teams on defense and remediation, executing architectural reviews, security code reviews, penetration testing and crafting fixes for security defects impacting legacy and emerging technologies.

This position reports to a Principal Security Architect or Senior Security Engineer and collaborates with a cross-functional team of experienced security consultants. We are seeking a skilled and detail-oriented Penetration Tester to join our security team. In this role, you will simulate real-world attacks to identify vulnerabilities across systems, networks, applications, and cloud environments. You'll work collaboratively to assess and strengthen the security posture of the organization, ensuring systems and data are protected against unauthorized access and breaches.

THERE ARE TWO ROLES OPEN HERE ONE SENIOR ROLE AND THE SECOND WILL BE SOMONE WITH 2-3 YEARS PEN-TESTING EXP

THIS IS A FULLY REMOTE CLIENT FACING ROLE IN IRELAND

Key Responsibilities:

• Conduct penetration testing on web and mobile applications, networks, APIs, and cloud infrastructure
• Perform threat modeling and vulnerability assessments
• Simulate internal and external security attacks to uncover potential weaknesses
• Create and deliver detailed findings and risk reports with actionable recommendations
• Collaborate with development, operations, and security teams to remediate vulnerabilities
• Maintain awareness of emerging threats, vulnerabilities, and security technologies
• Contribute to red teaming and adversary simulation exercises, where applicable
• Assist in developing automated security testing tools and processes

Essential:

• Proven experience in penetration testing, vulnerability assessment, or red teaming
• Strong understanding of OWASP Top 10, MITRE ATT&CK, and CVE scoring systems
• Proficiency with tools like Burp Suite, Metasploit, Nmap, Nessus, Wireshark, etc.
• Familiarity with scripting (Python, Bash, PowerShell) for automation
• Knowledge of security controls, firewalls, IDS/IPS, and authentication mechanisms
• Experience writing detailed, clear, and technically accurate reports

Preferred Qualifications:

• Certifications such as OSCP, OSCE, CRTP, CRTO, eCPPT, or CEH
• Experience with cloud platforms (AWS, Azure, GCP) and associated security testing
• Familiarity with DevSecOps and CI/CD pipelines
• Red team / blue team experience is a plus