Penetration Tester - Practitioner (Cybersecurity)

TL;DR

Penetration Tester - Practitioner (Cybersecurity): Perform network-based, web application, and API penetration testing for private equity clients to identify and assess vulnerabilities in public-facing infrastructure and applications. Focus on conducting red team exercises, writing clear reports on risk posture, and advising on security best practices including application and infrastructure design.

Location: Remote (US based, Central US)

Company

Technology governance firm supporting private equity and investment firms to buy, build, and run better technology by managing risks throughout the investment lifecycle.

What you will do

• Perform network-based penetration testing on clients' public-facing infrastructure to identify, assess, and report vulnerabilities.
• Conduct penetration testing on web applications and APIs (internal and external).
• Execute red team exercises to uncover infrastructure weaknesses and recommend remediations.
• Write clear, concise deliverable reports to help clients understand and reduce their risk posture.
• Advise clients on security best practices for application design, infrastructure architecture, and more.
• Collaborate with Crosslake practitioners to share penetration testing best practices.

Requirements

• Act as apprentice tester for first 2 projects, then drive projects independently to completion.
• Participate in and lead penetration testing efforts, collaborating with teams and producing reports for investors.
• Deliver at least one network, API, or web app penetration test per week.
• Work with private equity firms to assess technology risks and vulnerabilities in their portfolios.
• Collaborate with internal and client technical leads for timely planning, execution, and high-quality reports.

Culture & Benefits

• Guided by values of Service, Curiosity, Credibility, Commitment, and Creativity.
• Empower changemakers in high-stakes technology investments.
• Proactive, programmatic approach to technology governance.