Senior Penetration Tester – Application Req 701 - TM2 Group, LLC : Job Details

At Protegrity, we lead innovation by using AI and quantum-resistant cryptography to transform data protection across cloud-native, hybrid, on-premises, and open source environments. We leverage advanced cryptographic methods such as tokenization, format-preserving encryption, and quantum-resilient techniques to protect sensitive data.

As a global leader in data security, our mission is to ensure that data isn't just valuable but also usable, trusted, and safe.

Protegrity offers the opportunity to work at the intersection of innovation and collaboration, with the ability to make a meaningful impact on the industry while working alongside some of the brightest minds. Together, we are redefining how the world safeguards data, enabling organizations to thrive in a GenAI era where data is the ultimate currency. If you're ready to shape the future of data security, Protegrity is the place for you.

Position Summary: This role will report to the Director of Information Security and be a key part of Protegrity's dedication to Information Security. This person will partner with teams across the company to continually review and optimize our security posture while maintaining a focus on the ongoing reliability and stability of our business environment.

Responsibilities:

• Perform tests on applications, network devices, and cloud infrastructures

• Design and conduct simulated social engineering attacks

• Research and experiment with different types of attacks

• Develop methodologies for penetration testing

• Review code for security vulnerabilities

• Reverse engineer malware or spam

• Document security and compliance issues

• Automate common testing techniques to improve efficiency

• Write technical and executive reports

• Communicate findings to customers, technical staff and executive leadership

• Validate security improvements with additional testing

Qualifications:

• Bachelor's Degree in Computer Science or related fields; applicable specialized training; or equivalent experience

• 6-10 years of experience in cyber security including 4 years of Application Penetration Testing

• Knowledge of information security standards, rules and regulations related to information security and data confidentiality, and desktop, server, application, database, network security principles for risk identification and analysis

• Experience with performing black, white and grey box penetration testing and system exploitation against applications, APIs, Web, Mobile, and Modern Infrastructure (Containers, Microservices, Serverless etc.).

• Conducting research into real-world threat actor tactics, techniques, and procedures.

• Development experience using Python, PowerShell or Java

• Experience with conducting penetration and malicious user testing in Cloud environments, including Amazon Web Services (AWS), Azure, and on-premises systems

• Solid knowledge and understanding of development life cycle (SSDLC), CI/CD pipelines and Agile methodologies

• Understanding of common software security issues and remediation techniques (OWASP Top 10, SANS 25, Mitre ATT&CK, etc.)

• Experience with analyzing vulnerabilities and delivering clear and coherent written reporting, identifying application and network risks and providing mitigation recommendations

• Excellent knowledge of Windows/Linux systems administration and vulnerabilities

• An organized and detail-oriented cyber security professional able to perform independently as well as part of a team

• Preferred: Certified Ethical Hacker, or CompTIA PenTest+ Certification

Why Choose Protegrity

• Ensuring a diverse and inclusive workplace is our priority. We are committed to an environment of acceptance where you are free to bring your full self to work. All qualified applicants and current employees will not be discriminated against on the basis of race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability or veteran status.

Working Model:This role is available as fully home-based and generally would require you to attend on-site meetings only occasionally based on business needs. In certain circumstances the work model may change to accommodate business needs.

We offer a competitive salary and comprehensive benefits with generous vacation and holiday time off. All employees are also provided access to ongoing learning & development.

Ensuring a diverse and inclusive workplace is our priority. We are committed to an environment of acceptance where you are free to bring your full self to work. All qualified applicants and current employees will not be discriminated against on the basis of race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability or veteran status.

Please reference Section 12: Supplemental Notice for Job Applicants in our Privacy Policyto inform you of the categories of personal information that we collect from individuals who inquire about and/or apply to work for Protegrity USA, Inc., or its parent company, subsidiaries or affiliates, and the purposes for which we use such personal information.