Penetration Tester – Remote

About Company

Imagine a place where your expertise in digital defense is not just valued, but essential to safeguarding critical infrastructures worldwide. Career.zycto is a pioneering force in cybersecurity, committed to identifying and neutralizing threats before they can cause harm. For an aspiring or seasoned penetration tester, this means an unparalleled opportunity to continuously sharpen your ethical hacking prowess on diverse, complex systems. We cultivate a collaborative, knowledge-driven culture, empowering our team members to push boundaries, innovate solutions, and make a tangible difference in the global security landscape. Join us and elevate your impact.

Job Description

Are you a skilled Penetration Tester with a passion for uncovering vulnerabilities and fortifying digital defenses? Career.zycto is seeking a highly motivated and experienced Penetration Tester to join our elite, remote cybersecurity team. In this pivotal role, you will be instrumental in identifying and exploiting security weaknesses across a diverse array of client systems, applications, and networks. This isn’t just about finding flaws; it’s about providing actionable intelligence and strategic recommendations that empower our clients to build more resilient and secure environments.

Working remotely, you will have the autonomy to manage your engagements, from initial reconnaissance and threat modeling to detailed vulnerability analysis and comprehensive reporting. Our ideal candidate thrives in a challenging, fast-paced environment, possesses a deep understanding of adversarial tactics, techniques, and procedures (TTPs), and is adept at simulating real-world attacks. You’ll be working with cutting-edge tools and methodologies, constantly evolving your skills to stay ahead of emerging threats. This position offers a unique opportunity to contribute to high-impact projects, collaborate with a team of seasoned security professionals, and continuously grow your expertise in a supportive, innovative culture. We prioritize continuous learning, offering access to advanced training and certifications to ensure our team remains at the forefront of cybersecurity. If you’re ready to make a significant impact from anywhere, this role is for you. We value creative problem-solvers who can think like an attacker while maintaining the highest ethical standards. Your contributions will directly enhance the security posture of organizations, protecting sensitive data and critical operations from sophisticated cyber threats.

Key Responsibilities

• Conduct comprehensive penetration tests on web applications, mobile applications, network infrastructure, cloud environments, and APIs.
• Perform vulnerability assessments and provide detailed, actionable remediation recommendations.
• Develop custom scripts, tools, and methodologies to enhance testing efficiency and effectiveness.
• Analyze security vulnerabilities, determine their root causes, and assess potential business impact.
• Prepare clear, concise, and professional penetration test reports for technical and non-technical audiences.
• Collaborate with development and operations teams to guide remediation efforts and validate fixes.
• Stay current with the latest cybersecurity threats, attack vectors, and industry best practices.
• Participate in pre-engagement activities, including scope definition, rules of engagement, and threat modeling.
• Contribute to the continuous improvement of internal penetration testing processes and methodologies.

Required Skills

• Minimum of 4 years of experience in penetration testing or red teaming.
• Proficiency with common penetration testing tools (e.g., Burp Suite, Nmap, Metasploit, Nessus).
• Strong understanding of network protocols, operating systems (Windows, Linux), and web technologies.
• Solid knowledge of common vulnerabilities and exploitation techniques (OWASP Top 10, CWE).
• Experience with scripting languages (e.g., Python, PowerShell, Bash).
• Excellent written and verbal communication skills for technical reporting and client presentations.
• Ability to work independently and manage multiple engagements effectively in a remote setting.
• High ethical standards and a commitment to responsible disclosure practices.

Preferred Qualifications

• Relevant certifications such as OSCP, OSCE, eCPPT, GPEN, GWAPT, or similar.
• Experience with cloud security testing (AWS, Azure, GCP).
• Knowledge of secure coding principles and code review methodologies.
• Experience with social engineering tactics and physical penetration testing.
• Bachelor's or Master's degree in Computer Science, Cybersecurity, or a related field.

Perks & Benefits

• Competitive salary and performance-based bonuses.
• Comprehensive health, dental, and vision insurance.
• Generous paid time off and holidays.
• Remote-first work environment with flexible scheduling.
• Budget for home office setup and professional development.
• Opportunities for continuous learning, training, and industry certifications.
• Collaborative and supportive team culture.
• 401(k) matching program.

How to Apply

Ready to put your penetration testing expertise to the test with Career.zycto? We encourage all qualified candidates to apply by clicking on the application link below. Please ensure your resume highlights your relevant experience, technical skills, and any certifications. We look forward to reviewing your application and exploring how you can contribute to our mission of strengthening global cybersecurity.

Apply Now