Perform penetration testing on web applications and networks, discover vulnerabilities, develop tools, and manage projects while contributing to security measures and client communication.
Company Mission - Our mission is to help secure as many companies as possible, by using the best way of doing so, penetration testing. Sprocket Security prioritizes offensive security for enterprises, empowering them to build robust defense strategies based on individual business risk.
How - At Sprocket Security, we've built an expert-driven Continuous Penetration Testing platform that blends cutting-edge automated and manual testing methods.
Your Mission - You will be part of our passionate and innovative Service Delivery team, simulating real-world cyber-attack tactics, techniques, and procedures (TTP). We look for risks and security vulnerabilities utilized by real-world hackers. You will be part of this mission. Come and further your career at Sprocket Security.
Responsibilities:
- Perform web application testing methodologies at scale.
- Perform network and wireless testing methodologies at scale.
- Discover newly exploitable systems across our fleet of clients. It's fun to test that new vulnerability the day it's released!
- Build payloads and C2 infrastructure that evades defenses.
- Mimic tactics and techniques used by real-world adversaries.
- Show impact with post-exploitation activities.
- Manage our platform by conducting tasks, write findings, and work with clients to help detect and prevent.
- Develop tools and contribute to our automated infrastructure. You'll commonly program in the following languages: Ruby, Python, PowerShell, C# Bash, etc.
- Advanced usage of the following tools: Burp Suite Pro, Nessus, Metasploit, CobaltStrike, etc.
- Manage project lifecycles and present professionally to clients. Kickoff calls, debriefs, etc.
- Work closely with development teams to migrate human-driven tasks into automation.
- Work with AWS, Azure, terraform, ansible, and gitlab pipelines.
Requirements:
Minimum:
- Seven or more years of hands-on penetration testing experience.
- Five or more years of hands-on Web App penetration testing experience.
- Two or more years of hands-on Network penetration testing experience.
- Adversary Simulation experience.
- Detailed knowledge of identifying and exploiting vulnerabilities in Windows, Linux, and cloud -based systems.
- Programming experience in Ruby, Python, Bash. Bonus (C#, JavaScript, terraform, ansible).
- Clear and concise verbal and written skills.
- United States resident
Preferred:
- OSCP or equivalent skills-based certification mandatory, or will need to obtain within 12 months of employment.
- Has industry involvement by contributes research, open-source projects, or public speaking
- Experience managing or working with management on security projects and teams. Bonus if CISSP certified.
- Remote work acceptable.
- Preferred proximity to Madison, WI
Benefits:
- Unlimited and mandatory PTO for healthy work/life balance.
- Company matched 401k (immediate eligibility, no one should have to wait to start saving).
- 75% company contribution for health insurance for employees and 50% for dependants.
- 100% company contribution for dental and vision.
- Work whatever schedule works best for you. We care about results, not 9-5.
- Hardware and tools of your choice
- Support for your career development with paid training, conferences, certifications, etc.
Location: Remote
Ready to Trailblaze the Cybersecurity Frontier? If you're passionate about cybersecurity and eager to make an impact in the industry, we want you on our team. Apply now at Sprocket Security and join the revolution of safeguarding businesses from cyber threats!
Top Skills
Ansible
AWS
Azure
Bash
Burp Suite Pro
C#
Cobaltstrike
Gitlab
Metasploit
Nessus
Powershell
Python
Ruby
Terraform
Similar Jobs
Security • Cybersecurity
The Senior Penetration Tester conducts various penetration tests, social engineering assessments, vulnerability scans, and reports writing to enhance client security measures.
Top Skills:
AlicloudAppscanAWSAzureBashBurp SuiteCC#C++EttercapGCPJavaKali LinuxMetasploitNessusNiktoNmapPerlPythonRackspaceRubyScapySslstrip
Financial Services
The Senior Penetration Tester is responsible for executing penetration tests, managing client relationships, and providing technical leadership and mentorship within project teams.
Top Skills:
BashBurp SuiteExcelJavaScriptMicrosoft WordOscpPenetration TestingPowerPointPowershellPython
.png)
Consumer Web • eCommerce • Machine Learning • Professional Services • Software • Sports • Analytics
Lead a software engineering team to design, develop, and deliver high-quality web and mobile applications, while promoting best practices and guiding technical strategies.
Top Skills:
Api GatewayAWSC#FlutterJavaLambdaPythonReactSqs
What you need to know about the Charlotte Tech Scene
Ranked among the hottest tech cities in 2024 by CompTIA, Charlotte is quickly cementing its place as a major U.S. tech hub. Home to more than 90,000 tech workers, the city’s ecosystem is primed for continued growth, fueled by billions in annual funding from heavyweights like Microsoft and RevTech Labs, which has created thousands of fintech jobs and made the city a go-to for tech pros looking for their next big opportunity.
Key Facts About Charlotte Tech
- Number of Tech Workers: 90,859; 6.5% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Lowe’s, Bank of America, TIAA, Microsoft, Honeywell
- Key Industries: Fintech, artificial intelligence, cybersecurity, cloud computing, e-commerce
- Funding Landscape: $3.1 billion in venture capital funding in 2024 (CED)
- Notable Investors: Microsoft, Google, Falfurrias Management Partners, RevTech Labs Foundation
- Research Centers and Universities: University of North Carolina at Charlotte, Northeastern University, North Carolina Research Campus
