Penetration Tester, Global Services

Rapid7's Global Services team seeks a skilled Penetration Tester to enhance client security posture using technical expertise and defense strategies. This role involves attacking networks and hacking custom protocols implemented in embedded devices.

About the Team

Rapid7's Penetration Testing Consultants possess diverse skills, ranging from extensive blue team experience to deep offensive security knowledge in Red Team operations, IoT, and exploitation development. Our collaborative model ensures clients benefit from the collective expertise of the entire team.

About the Role

As a Penetration Tester, your primary responsibility is conducting various security engagements, including network penetration testing, web application testing, phishing/vishing simulations, Red Team exercises, IoT security assessments, and Cloud security testing. Your technical skills are crucial for improving client security posture.

Specifically, your focus will be to:

• Consistently deliver network, web application, and wireless penetration testing services.
• Produce high-quality security reports and peer-review colleagues' work.
• Engage in knowledge sharing and cross-training with a collaborative mindset.
• Deliver timely reports to clients and external stakeholders.
• Translate complex technical concepts for non-security personnel.
• Continuously learn and satisfy a ferocious curiosity about how things work.

The skills and qualities you’ll bring include:

• Excellent communication skills for both internal and external stakeholders.
• Previous technical consulting experience.
• Knowledge of cybersecurity standards and industry best practices.
• Strong knowledge of modern penetration testing tools and methods.
• Strong knowledge of network, web-based application, and IEEE 802.11 security concepts.
• Knowledge of Windows/Linux/UNIX internals and the Internet protocol suite.
• Experience using interpreted languages (Ruby, Python, PHP, etc.).
• Knowledge of compiled languages (Java, C, C++, Assembly, etc.).
• Experience with social engineering techniques and tactics.
• Offensive Security Certified Professional (OSCP) certification, or actively working toward it.
• A customer-driven mindset focused on ensuring a fantastic customer experience.
• The ability to ask for help.

We know that the best ideas and solutions come from multi-dimensional teams. That’s because these teams reflect a variety of backgrounds and professional experiences. If you are excited about this role and feel your experience can make an impact, please don’t be shy - apply today.

About Rapid7

At Rapid7, our vision is to create a secure digital world for our customers, our industry, and our communities. We achieve this by harnessing our collective expertise and passion to challenge what’s possible and drive extraordinary impact. We’re building a dynamic and collaborative workplace where new ideas are welcome.

Protecting 11,000+ customers against bad actors and threats means we’re continuing to push the envelope just like we’ve been doing for the past 20 years. If you’re ready to solve some of the toughest challenges in cybersecurity, we’re ready to help you take command of your career. Join us.

Rapid7, Inc. is committed to fair and equitable compensation practices. A candidate’s salary is determined by various factors including, but not limited to, relevant work experience, skills, and certifications. We evaluate compensation decisions on a case-by-case basis, and it is not typical for an individual to be hired at the very top of the salary range.

The salary range for this role in the US is:
$114,200.00 - 154,400.00 USD Annual

Salary ranges may vary based on geographical location. This range does not include variable/incentive compensation, equity and benefits (where applicable/eligible).

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability, protected veteran status or any other status protected by applicable national, federal, state or local law.