Penetration Tester, Analyst
Do you enjoy attacking networks? Do you enjoy hacking custom protocols implemented in embedded devices? As a penetration tester on the Global Services team at Rapid7, you will help our clients improve their security posture through your technical skills and knowledge of defense strategies.
About the Team
Here at Rapid7, our penetration testing consultants have come to us with various skills, ranging from multiple years within a blue team environment, helping to protect the company infrastructure, giving yearly security training sessions, and more. We also have individuals with numerous years within the offensive security field, with vast amounts of experience in Red Team, IoT, exploitation development, and more. At Rapid7, you're not alone in testing, which is something even our clients know. You're not just getting one pentester, you're getting them all.
About the Role
Within Rapid7, every employee will learn about our Core Values. These values are important at every level. This is at the forefront of an excellent consultant. Bring your awesome communication skills, timely delivery of reports, consume knowledge and experience from others, and contribute back to the community and Rapid7 as a whole. Our pentest consultants will test against various types of engagements, including network, web app, phishing/vishing, Red Team, IoT, Cloud, etc..
In this role, you will need:
Excellent communication skills both with internal and external stakeholders
Collaborative mindset, contributing to knowledge sharing and cross training
Technical competencies, including previous technical consulting experience
High quality report writing and peer reviewing
Knowledge of Cybersecurity standards and industry best practices
Check your ego at the door
The skills you’ll bring include:
3+ years in an active technical security role
Basic knowledge of the following:
Modern penetration testing tools and methods
Network security concepts
Web-based application security concepts
IEEE 802.11 security concepts
Internet protocol suite
Experience using interpreted languages (Ruby, Python, PHP, etc.)
Knowledge of compiled languages (Java, C, C++, Assembly, etc.)
Social engineering techniques and tactics
Strong written and verbal skills
Knowledge of common I.T. governance guidance
A customer driven mindset, focused on ensuring a fantastic customer experience, and ability to translate technical concepts and convey them to non-security personnel
Ability to ask for help!
25% - 30% travel will be required
We know that the best ideas and solutions come from multi-dimensional teams. Teams reflecting a variety of backgrounds and professional experiences. If you are excited about this role and feel your experience can make an impact, please don’t be shy - apply today.
Rapid7 is creating a more secure digital future for all by helping organizations strengthen their security programs in the face of accelerating digital transformation. Our portfolio of best-in-class solutions empowers security professionals to manage risk and eliminate threats across the entire threat landscape from apps to the cloud to traditional infrastructure to the dark web. We foster open source communities and cutting-edge research–using these insights to optimize our products and arm the global security community with the latest in attackers methods. Trusted by more than 10,000 customers worldwide, our industry-leading solutions and services help businesses stay ahead of attackers, ahead of the competition, and future-ready for what’s next.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status.
These cookies are necessary for the website to function and cannot be switched off in our systems. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in or filling in forms. You can set your browser to block or alert you about these cookies, but some parts of the site will not then work.
These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site. If you do not allow these cookie we will not know when you have visited our site, and will not be able to monitor its performance.