Penetration Testing Analyst

Join the Global Services team as a Penetration Testing Analyst, helping clients enhance their security posture through technical expertise and defense strategy knowledge. You will enjoy attacking networks and hacking custom protocols on embedded devices. This role also involves collaborating with Managed Services teams to deliver daily tactical reports, triage alerts, address customer needs, and assist with incident response.

About the Role

Your primary responsibility as a Penetration Testing Analyst will be performing technical testing against various targets and delivering daily tactical reports to customers. You will gain valuable experience observing the evolving cyber threat landscape and assisting clients with threat remediation and mitigation.

Specific Focus:

• Perform technical testing on diverse targets, including network penetration testing (internal, external, wireless), web application and API testing, and social engineering (on-premise and electronic).
• Produce high-quality reports and peer-review colleagues' work for accuracy.
• Assist in developing and creating Executive Briefings.
• Deliver timely reports to clients and external stakeholders.
• Translate technical concepts for non-security personnel.
• Learn effectively in a fast-paced environment and undertake solo engagements.
• Participate in industry conferences and professional organizations.

Skills and Qualities

• 3+ years in an active technical security role.
• Excellent written and verbal communication skills.
• Previous technical security consulting experience.
• Knowledge of modern penetration testing tools and methods.
• Strong understanding of network, web application, and IEEE 802.11 security concepts.
• Knowledge of Windows/Linux/UNIX internals and the Internet protocol suite.
• Experience with interpreted languages (Ruby, Python, PHP, etc.) and knowledge of compiled languages (Java, C, C++, Assembly, etc.).
• Experience with social engineering techniques and tactics.
• A Bachelor’s degree in Computer Science, MIS, CIS, or a related field, or equivalent experience.
• Certifications such as GPEN, CPTS, or OSCP are a plus.
• Ability to ask for help.

We value diverse teams and encourage you to apply if you feel your experience can make an impact.

About Rapid7

Rapid7's vision is to create a secure digital world. We achieve this by leveraging our collective expertise and passion to challenge possibilities and drive extraordinary impact. We foster a dynamic and collaborative workplace where new ideas are welcomed. Protecting over 11,000 customers requires continuous innovation. If you are ready to tackle tough cybersecurity challenges, we are ready to help you advance your career. Join us.

Salary Range (US): $86,700.00 - $117,300.00 USD Annual. Salary may vary by location and does not include variable compensation, equity, or benefits.

Rapid7, Inc. is an equal opportunity employer committed to fair and equitable compensation practices.