Penetration Tester – Remote

About Company

Hiring.zycto is a dynamic force in digital security, constantly pushing boundaries to safeguard our clients’ most critical assets. For a Penetration Tester, this means a playground of complex challenges, cutting-edge tools, and a collaborative environment where your expertise directly impacts real-world protection. We pride ourselves on fostering innovation and growth, empowering our team to develop and refine their offensive security skills against diverse, high-stakes targets. Join us and shape the future of cybersecurity.

Job Description

Are you a seasoned Penetration Tester with an insatiable curiosity for uncovering vulnerabilities and a passion for securing digital landscapes? Hiring.zycto is seeking a highly skilled and self-motivated Remote Penetration Tester to join our elite cybersecurity team. In this pivotal role, you will be instrumental in identifying, exploiting, and reporting security weaknesses across a diverse range of client systems and applications. We offer a challenging yet rewarding environment where your expertise will directly contribute to enhancing the security posture of leading organizations. This is an unparalleled opportunity to leverage your offensive security prowess from anywhere, collaborating with top-tier professionals and continuously expanding your skillset in a dynamic, threat-rich environment.

As a key member of our remote security operations, you will be entrusted with the critical task of simulating real-world cyberattacks to expose potential risks before malicious actors can exploit them. Your work will involve more than just identifying flaws; it will demand creative problem-solving, meticulous documentation, and clear communication of complex technical findings to both technical and non-technical stakeholders. This remote position offers the autonomy to manage your projects effectively while being fully supported by a collaborative team dedicated to advancing cybersecurity. We are looking for someone who not only excels at finding vulnerabilities but also understands the broader implications for business continuity and data integrity. Your insights will drive remediation strategies, helping our clients build more resilient and secure infrastructures. If you thrive on the thrill of the hunt, enjoy dissecting complex systems, and are committed to delivering actionable security intelligence, we want to hear from you. Join us in making a tangible difference in the world of digital security.

Key Responsibilities

• Conduct comprehensive penetration tests on web applications, APIs, network infrastructure, cloud environments, and mobile applications using industry-standard methodologies (e.g., OWASP Top 10, PTES).
• Perform vulnerability research, exploit development, and post-exploitation activities to identify and validate security weaknesses.
• Document findings meticulously, including detailed descriptions of vulnerabilities, proof-of-concept exploits, impact assessments, and clear remediation recommendations.
• Communicate complex technical findings effectively to both technical teams and executive-level stakeholders, providing strategic advice for risk mitigation.
• Stay abreast of the latest cybersecurity threats, attack vectors, and penetration testing tools and techniques, continuously enhancing personal and team capabilities.
• Contribute to the development and improvement of internal penetration testing methodologies, tools, and best practices.
• Work independently on engagements while also collaborating effectively with remote team members and client security teams.

Required Skills

• Proven experience (4+ years) as a Penetration Tester or Ethical Hacker, demonstrating a strong understanding of offensive security principles.
• Expertise in various penetration testing tools such as Nmap, Metasploit, Burp Suite Professional, Nessus, Wireshark, Impacket, BloodHound, and other Kali Linux tools.
• Solid understanding of networking protocols (TCP/IP, HTTP/S, DNS), operating systems (Linux, Windows, macOS), and common web technologies.
• Proficiency in at least one scripting language (e.g., Python, PowerShell, Bash) for exploit development and automation.
• Deep knowledge of common web application vulnerabilities (e.g., SQL Injection, XSS, CSRF, RCE) and secure coding principles.
• Familiarity with cloud security concepts and experience in testing AWS, Azure, or GCP environments.
• Strong understanding of Active Directory enumeration and exploitation techniques.
• Excellent written and verbal communication skills, with the ability to articulate technical concepts clearly and concisely to diverse audiences.
• Exceptional problem-solving abilities and a persistent, detail-oriented approach to security testing.
• Ability to work independently, manage multiple projects, and meet tight deadlines in a remote work setting.

Preferred Qualifications

• Relevant industry certifications such as OSCP (Offensive Security Certified Professional), OSWE, OSEE, OSCE3, GPEN (GIAC Penetration Tester), eJPT, or CEH.
• Bachelor's or Master's degree in Computer Science, Cybersecurity, Information Security, or a related technical field.
• Experience with red teaming or purple teaming exercises.
• Knowledge of mobile application penetration testing (iOS/Android) and corresponding tools.
• Familiarity with compliance frameworks (e.g., PCI DSS, HIPAA, GDPR, ISO 27001).

Perks & Benefits

• Competitive salary and performance-based bonuses.
• Comprehensive health, dental, and vision insurance.
• Generous paid time off and holidays.
• Flexible remote work environment.
• Home office setup stipend.
• Opportunities for continuous learning and professional development, including certification sponsorship.
• Collaborative and supportive team culture.
• Access to cutting-edge security tools and technologies.

How to Apply

If you are a highly motivated Penetration Tester looking to make a significant impact in a remote role, we encourage you to apply! Please click on the link below to submit your resume and a cover letter detailing your experience and why you are the ideal candidate for this position.

Apply Now