CrawlJobs Logo

Cyber Engineer and Penetration Tester

leadingpath.com Logo

Leading Path Consulting

Location Icon

Location:
United States , Herndon

Category Icon
Category:
IT - Software Development

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

This Cyber Security Project Engineer will provide highly technical and in-depth penetration testing and ethical hacking to target, assess, and exploit risk and vulnerabilities of information systems. The Cyber Security Project Engineer will provide decision makers with documented and actionable data to aid in making strategic investment decisions.

Job Responsibility:

  • Document all identified system risks, planned test procedures, and results
  • Perform analyses of vulnerabilities identified during testing
  • Review program-level documentation such as requirements specification, system architecture, design documents, test plans, and security plans
  • Create and document penetration testing plans and procedures
  • Conduct hands-on penetration testing by leveraging approved testing plans and procedures
  • Analyze penetration test results, document risks, and recommend countermeasures to uncovered risks
  • Participate or lead technical exchange meetings and application review boards
  • Document action items and results from technical exchange meetings and application review boards
  • Brief management on the status of action items and results of activities

Requirements:

  • Demonstrated work experience in cyber security or related IT field
  • Demonstrated experience with cyber penetration testing
  • Demonstrated experience leveraging adversarial tactics to conduct hands-on security testing
  • Demonstrated experience applying computer attack methods and system exploitation techniques
  • Demonstrated working knowledge of cyber security principles for Linux, Windows, and virtual platforms
  • Demonstrated experience designing, testing, or implementing IT security architecture
  • Demonstrated experience performing network security analysis
  • Demonstrated experience analyzing network architectures
  • Demonstrated experience using network management tools
  • Demonstrated experience developing risk management methodologies
  • Demonstrated experience analyzing test results to develop risk and threat mitigation plans
  • Demonstrated experience testing or reviewing system configuration, development, and design specifically around enterprise systems and hypervisors
  • Demonstrated experience designing, testing, or implementing complex Windows installations
  • TS/SCI w/ FS Poly required prior to applying

Nice to have:

  • Demonstrated experience participating in public and private information security groups and organizations
  • Demonstrated experience communicating vulnerability results and risk posture to senior executives
  • Demonstrated experience performing complex technical tasks with minimal direction
  • A Bachelor's degree in Computer Science, Information Systems, Engineering, or other related scientific or technical discipline
  • Two or more of the relevant certifications: Offensive Security Certified Professional (OSCP)
  • Global Information Assurance Certification Penetration Tester (GPEN)
  • eLearn Security Certified Professional Penetration Tester (eCPPTv2)
  • Global Information Assurance Certification Web Application Penetration Tester (GWAPT)
What we offer:
  • Vacation – 5 weeks of accrued paid vacation per year (i.e., 8.33 hours accrued per pay period worked)
  • Holidays - Paid holidays published annually by the Office of Personnel Management, excluding Inauguration Day
  • 100% paid for Health Benefits* (United Healthcare, Guardian Dental, VSP Vision, MetLife, Life and Disability Insurance and annual $1500 employer HSA contribution on qualified plans) *health benefits kick in the 1st of the month following your start date
  • 6% 401k Contribution (3% paid out during each pay period, the additional 3% will be paid out as a lump sum in Q1 each year)
  • Training Reimbursement – Approved training and education expenses will be reimbursed
  • Travel Expenses – Approved travel expenses will be reimbursed

Additional Information:

Job Posted:
January 10, 2026

Employment Type:
Fulltime
Work Type:
On-site work
Icon
Leading Path Consulting - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Cyber Engineer and Penetration Tester

Senior Penetration Tester

As a Penetration Tester, you'll conduct regular, comprehensive security assessme...
Location
Location
Belgium , Brussels
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 5 years' experience in one or more of the following areas: Penetration Tester, Red/Purple Team Member, Security Engineer
  • Knowledge of technologies up to system level (web frameworks, communications protocols, database systems)
  • Offensive security knowledge of cyber-attack techniques, vulnerabilities, and mitigation strategies
  • Knowledge of penetration testing tools, frameworks, and methodology
  • Skills using Kali Linux, Nmap, PowerShell, Metasploit, Cobalt Strike, OWASP ZAP, Burp Suite
  • Proficiency in scripting
  • Awareness of frameworks such as MITRE ATT&CK and NIST and how they can be applied effectively within an enterprise
  • Familiarity with the latest exploits, tactics, techniques, and procedures (TTP), vulnerability remediation and security trends
  • Cyber security qualifications from Offensive Security, SANS, Pentester Academy, CREST, eLearnSecurity or others
Job Responsibility
Job Responsibility
  • Scoping and executing of complex penetrations test across a wide scope of technologies, products, services, and applications and critical infrastructure companies
  • Helping the team to define and improve the internal security testing programme
  • Documenting technical issues both Cyber and IT related during testing assessments
  • Improve our monitoring services by working in purple style exercises and operating in a red team capacity to improve the ability to detect and respond to threats
  • Supporting incident response by providing context and expertise around cyber threats
  • Mentor to our junior & medior colleagues
What we offer
What we offer
  • Extensive career development opportunities, both local and international
  • Part of a dynamic network of 56,000 professionals at all stages of their careers
  • Wide array of offices to explore
  • Fulltime
Read More
Arrow Right

Cyber Security Engineer

Provide hands‑on cyber expertise across compliance, vulnerability management, in...
Location
Location
United States , Washington, DC
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree + 12 years of related experience
  • Master’s degree + 10 years of related experience
  • Ph.D. + 7 years of related experience
  • 15 years of related experience with no degree
  • Experience in: Cybersecurity assessments, incident response, and threat/risk/vulnerability analysis
  • Supporting complex networks/systems (including differing classification levels)
  • Applying the Risk Management Framework (RMF)
  • Strong written and verbal communication skills
  • ability to brief technical/non‑technical stakeholders
  • At least one active security certification, such as: Security+ CE, CySA+, CCNA Security, SSCP, CISSP (or Associate)
Job Responsibility
Job Responsibility
  • Conduct and review technical cybersecurity assessments
  • Identify vulnerabilities and non‑compliance with cybersecurity standards
  • recommend mitigations
  • Perform research, design evaluation, technical development, and system integration planning
  • Perform and maintain vulnerability scans
  • produce clear reports and metrics
  • Track and report IAVM (Information Assurance Vulnerability Management) compliance
  • Maintain a curated library of security audit tools and procedures for testing, internal audits, incident response, and diagnosis
  • Maintain Authorization to Operate (ATO) records and supporting artifacts
  • Manage and report POA&M (Plan of Action & Milestones) compliance
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • eligible to enroll in our company 401(k) plan
Read More
Arrow Right

Information Security Analyst

The SOC Analyst will be responsible for day-to-day security threats, vulnerabili...
Location
Location
United Kingdom , Belfast
Salary
Salary:
Not provided
apexclearing.com Logo
Apex Clearing
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • The permanent right to live and work in the United Kingdom - this job is based in Belfast, Northern Ireland
  • Bachelor’s degree in a related field (Security, Forensics, Cyber Security, or Computer Science is preferred) or equivalent industry related experience
  • At least 2 years' experience working within an information security / cyber security role
  • Desirable | Proven experience as a security analyst, incident handler/responder, security engineer, or penetration tester
  • Knowledge of security methodologies, processes (i.e., Cyber Kill Chain/Diamond Models, and the MITRE ATT&CK/D3FEND framework)
  • Knowledge of technical security solutions (such as but not limited to firewalls, SIEM, NIDS/NIPS/HIDS/HIPS, EDR, DLP, SOAR, proxies, network behavioural analytics, orchestration, automation and cloud security)
  • Deep knowledge of TCP/IP, UDP, DNS, FTP, SSH, SSL/TLS and HTTP Protocols, network analysis, and network/security applications and email security
  • Good knowledge of common malware threats and attack methodologies
  • Basic knowledge of scripting languages and programming languages (PowerShell, Python, Bash, .NET, Ruby,Java, C, etc.)
  • Desirable Professional Certifications: GCIA, GCIH, GCFE, GCFA, Security+, CCNA CyberOps, OSCP, GPEN, GWAPT, CEH, CySA+
Job Responsibility
Job Responsibility
  • Monitor, analyse, investigate security incidents and events using various tools and technologies including SIEM, UEBA, Threat Intel and EDR
  • Perform security incident and event correlation, analysis, triage using information gathered from a variety of sources within the enterprise
  • Generate reports, dashboards, and presentations from security technologies
  • Able to participate in an on-call rotation and provide Tier 1 & Tier 2 support
  • Provide analysis of trending security data from a large number of heterogeneous security devices across different layers
  • Provide Incident Response (IR) support when analysis confirms an actionable incident
  • Communicate and collaborate with stakeholders, including internal customers and senior management to provide updates on security incidents and to ensure proper resolution
  • Investigate, document, and report on information security threats and emerging trends
  • Integrate technologies and share information with SOC analysts and external teams
  • Participate in internal projects and initiatives to increase SOC efficiency and improve SOC tooling
What we offer
What we offer
  • 28 days annual leave plus 10 NI national holidays
  • Pension matched up to 7%
  • Private health insurance for medical and dental
  • Life Insurance
  • Great work/life balance and flexible working hours
  • Monthly catered lunches
  • Unlimited drinks and snacks
  • Charitable matching gift program
  • Annual bonus
  • Training and development budget
  • Fulltime
Read More
Arrow Right

Mid-Level Cyber Security Engineer

We are seeking a Mid-Level Cyber Security Engineer to provide expert cyber domai...
Location
Location
United States , Washington, DC
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Candidates must meet ONE of the following education/experience combinations: Bachelor’s degree + 12+ years of related experience
  • Master’s degree + 10+ years of related experience
  • Ph.D. degree + 7+ years of related experience
  • 15+ years of related experience without a degree
  • Technical Requirements: Experience conducting site surveys for IT equipment (racks, desktop PC environments)
  • Experience installing IT hardware in 24/7 operational environments
  • Strong understanding of: Cybersecurity assessments
  • Incident response
  • Risk & vulnerability assessment
  • Cyber threat analysis
Job Responsibility
Job Responsibility
  • Cyber Security Engineering & Analysis: Conduct and review complex cybersecurity assessments
  • Identify system vulnerabilities and areas of non‑compliance with cybersecurity standards
  • Recommend mitigation strategies and risk‑reduction approaches
  • Perform research, evaluation, and development in advanced cybersecurity areas
  • Security Operations & Monitoring: Perform and maintain vulnerability scans, generating clear reports for leadership
  • Track and report Information Assurance Vulnerability Management (IAVM) compliance
  • Support incident response teams with domain-specific expertise
  • Maintain a library of security audit tools and related testing processes
  • Risk Management & Compliance: Review and update Authorization to Operate (ATO) documentation
  • Manage and report Plan of Action & Milestones (POA&M) compliance
What we offer
What we offer
  • Benefits are available to contract/temporary professionals, including medical, vision, dental, and life and disability insurance
  • Hired contract/temporary professionals are also eligible to enroll in our company 401(k) plan
Read More
Arrow Right

Cloud Network Security Engineer

A Cloud Network Security Engineer is focused on Azure networking is responsible ...
Location
Location
United States , Multiple Locations
Salary
Salary:
119800.00 - 234700.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Doctorate in Cyber Security, Data Science, Mathematics, Computer Science, or related field
  • OR Master's Degree in Cyber Security, Data Science, Mathematics, Computer Science, or related field AND 3+ years experience in one or more of the following: Cloud security engineering (Azure, AWS, or GCP)
  • Cloud networking and network security (VNETs, firewalls, routing, segmentation, Zero Trust network controls)
  • Secure cloud architecture or zero‑trust design
  • Threat modeling for cloud-native services
  • Cloud identity & access management (IAM), RBAC, or conditional access
  • Infrastructure‑as‑Code (IaC) security (e.g., Bicep, Terraform)
  • Cloud workload protection, CSPM, CWPP
  • Cloud threat detection, anomaly detection, or behavioral analytics
  • Security monitoring and incident response for cloud environments
Job Responsibility
Job Responsibility
  • Design and secure Azure cloud network architectures supporting highly available, fully automated workloads
  • Act as the SME for Azure network security services, advising engineers, developers, analysts, and penetration testers
  • Integrate Azure network services and logs with broader security platforms and cloud‑native big‑data systems to enable monitoring, alerting, and analytics
  • Operate and manage large‑scale cloud network security services, including incident investigation, threat response, and continuous service reliability improvements
  • Automate deployments, configuration updates, and operational workflows using scripting, infrastructure‑as‑code, and AI‑driven solutions
  • Maintain overall platform health through proactive troubleshooting, monitoring, telemetry analysis, and continuous improvement of cloud network coverage
  • Execute cloud service deployments and upgrades in alignment with change management processes while driving service quality through data‑driven insights
  • Fulltime
Read More
Arrow Right

Senior Penetration Tester

The Senior Penetration Tester is an advanced subject matter expert responsible f...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree or equivalent in Information Technology or Computer Science or related field
  • Security related certifications such as OSWE, OSEP, OSCP, OSCE, CRTP, GPEN, or CREST is desirable
  • Advanced penetration testing experience and ethical hacking gained within a similar global environment
  • Advanced experience with both commercial and open-source security tools and scripting languages
  • Advanced exposure to security testing scenarios e.g. Capture the Flag / Red Team / Blue Team is desirable
  • Advanced experience with various testing platforms e.g. Hack the Box / Vulnhub / PentesterLab is desirable
  • Ability to work independently and manage multiple projects within remote environment
  • Demonstrates a strong ability to engage with various stakeholders, have a team-based approach and work towards share goals and outcomes
  • Ability to think outside the box and a passion to improve your skills and drive innovation
  • Ability to compromise systems and demonstrate ways to laterally move post compromise
Job Responsibility
Job Responsibility
  • Plans, executes and manages complex penetration testing engagements on various IT assets, including networks, applications and databases
  • Conducts simulated cyber-attacks, including social engineering, to identify vulnerabilities and assesses the organization's resilience to cyber threats
  • Performs penetration tests against internal and external facing systems
  • Analyzes and interprets penetration test results and provides detailed reports to relevant stakeholders
  • Provides input to improve the quality and effectiveness of tests in a highly scaled and global environment
  • Articulates complex technical risks through creation of reports and delivering presentations to key stakeholders
  • Works with Security DevOps teams to test the orchestration and automation processes and platforms, feed results into a testing program
  • Supports the assessment risk and the development and/or recommends appropriate mitigation countermeasures based on empirical testing
  • Provides comprehensive technical expertise with web, application and database vulnerability testing
  • Supports the development of the security automation framework and the implementation roadmap
  • Fulltime
Read More
Arrow Right

Penetration Tester

The Penetration Tester role at NTT DATA involves assessing the security of infor...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree or equivalent in Information Technology or Computer Science or related field
  • Security related certifications such as OSWE, OSEP, OSCP, OSCE, CRTP, GPEN, or CREST is desirable
  • Seasoned demonstrated penetration testing experience and ethical hacking gained within a similar global environment
  • Seasoned demonstrated experience with both commercial and open-source security tools and scripting languages
  • Seasoned demonstrated exposure to security testing scenarios e.g. Capture the Flag / Red Team / Blue Team is desirable
  • Seasoned demonstrated experience with various testing platforms e.g. Hack the Box / Vulnhub / PentesterLab is desirable
  • Ability to work independently and manage multiple projects within remote environment
  • Demonstrates a strong ability to engage with various stakeholders, have a team-based approach and work towards share goals and outcomes
  • Ability to think outside the box and a passion to improve your skills and drive innovation
  • Ability to compromise systems and demonstrate ways to laterally move post compromise
Job Responsibility
Job Responsibility
  • Plans, executes and manages complex penetration testing engagements on various IT assets, including networks, applications and databases
  • Conducts simulated cyber-attacks, including social engineering, to identify vulnerabilities and assesses the organization's resilience to cyber threats
  • Performs penetration tests against internal and external facing systems
  • Analyses and interprets penetration test results and provides detailed reports to relevant stakeholders
  • Provides input to improve the quality and effectiveness of tests in a highly scaled and global environment
  • Articulates complex technical risks through creation of reports and delivering presentations to key stakeholders
  • Works with Security DevOps teams to test the orchestration and automation processes and platforms, feed results into a testing program
  • Supports the assessment risk and the development and/or recommends appropriate mitigation countermeasures based on empirical testing
  • Provides comprehensive technical expertise with web, application and database vulnerability testing
  • Supports the development of the security automation framework and the implementation roadmap
What we offer
What we offer
  • Workplace embraces diversity and inclusion – it’s a place where you can grow, belong and thrive
  • Fulltime
Read More
Arrow Right

Mid-Level Cyber Security Engineer

We are seeking a Mid-Level Cyber Security Engineer to provide expert cyber domai...
Location
Location
United States , Washington, DC
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree + 12+ years of related experience
  • Master’s degree + 10+ years of related experience
  • Ph.D. degree + 7+ years of related experience
  • 15+ years of related experience without a degree
  • Experience conducting site surveys for IT equipment (racks, desktop PC environments)
  • Experience installing IT hardware in 24/7 operational environments
  • Strong understanding of: Cybersecurity assessments
  • Incident response
  • Risk & vulnerability assessment
  • Cyber threat analysis
Job Responsibility
Job Responsibility
  • Conduct and review complex cybersecurity assessments
  • Identify system vulnerabilities and areas of non‑compliance with cybersecurity standards
  • Recommend mitigation strategies and risk‑reduction approaches
  • Perform research, evaluation, and development in advanced cybersecurity areas
  • Perform and maintain vulnerability scans, generating clear reports for leadership
  • Track and report Information Assurance Vulnerability Management (IAVM) compliance
  • Support incident response teams with domain-specific expertise
  • Maintain a library of security audit tools and related testing processes
  • Review and update Authorization to Operate (ATO) documentation
  • Manage and report Plan of Action & Milestones (POA&M) compliance
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • eligible to enroll in our company 401(k) plan
Read More
Arrow Right