Penetration Testing Engineer - Network Security

Remote Full-time
The Penetration Testing Engineer – Network Security is a hands-on client facing offensive security role responsible for executing network, cloud, and adversary-emulation engagements under established methodologies. This role goes beyond point-in-time vulnerability testing and actively contributes to red team and purple team operations, including social engineering, attack-path validation, and defensive collaboration. Penetration Testing Engineers work closely with senior testers, red team leads, detection engineers, and clients to identify exploitable weaknesses, simulate real-world threat actor behavior, and validate security controls. This role is ideal for practitioners with a strong networking foundation who are ready to operate as adversaries while contributing to high-quality reporting and continuous improvement of testing capabilities. Typical Experience β€’ 3–5 years of experience in IT, cybersecurity, or offensive security β€’ Prior exposure to penetration testing, red team activities, SOC collaboration, or adversary emulation β€’ Experience performing internal, external, or cloud network security assessments Core Responsibilities Network & Infrastructure Penetration Testing β€’ Execute internal and external network penetration tests, including attack-path discovery and privilege escalation β€’ Perform port scanning, service enumeration, and network mapping using industry-standard tools β€’ Identify and validate misconfigurations, weak authentication, segmentation failures, and trust boundary issues β€’ Assess on-prem and cloud network architectures (AWS, Azure, hybrid environments) Red Team & Purple Team Operations (Required) β€’ Participate in red team engagements simulating real-world adversaries β€’ Execute TTP-driven attacks aligned to frameworks such as MITRE ATT&CK β€’ Support purple team exercises by collaborating with defensive teams to: β€’ Validate detections β€’ Tune alerts β€’ Measure defensive coverage β€’ Provide clear attacker-perspective feedback to blue teams and security leadership Social Engineering (Required) β€’ Support and/or execute social engineering campaigns, including: β€’ Phishing (email-based and credential harvesting) β€’ Vishing and pretexting (as authorized) β€’ Physical security testing support (where in scope) β€’ Assist in campaign planning, execution, and ethical handling of sensitive data β€’ Document social engineering outcomes with clear business and risk context Reporting & Communication β€’ Draft clear, accurate technical findings with reproduction steps and evidence β€’ Contribute to executive summaries that explain risk, impact, and attack feasibility β€’ Communicate findings effectively to: β€’ Technical teams β€’ Defensive stakeholders β€’ Non-technical leadership β€’ Support remediation validation and re-testing activities Tooling & Continuous Improvement β€’ Use and help improve offensive tooling, scripts, and testing infrastructure β€’ Support automation efforts for discovery, enumeration, and validation β€’ Continuously develop skills in network attacks, cloud security, and adversary techniques Technical Skills & Knowledge Required Technical Skills β€’ Strong understanding of: β€’ TCP/IP, routing, DNS, DHCP β€’ Network segmentation and trust boundaries β€’ Hands-on experience with: β€’ Port scanning and enumeration (e.g., Nmap) β€’ Vulnerability identification and validation β€’ Familiarity with common network attack vectors: β€’ Weak credentials β€’ Misconfigured services β€’ Excessive trust and lateral movement paths β€’ Working knowledge of firewalls, VPNs (IPSec/SSL), and access controls β€’ Basic scripting for automation (Bash, Python, or PowerShell) Cloud & Hybrid Environments β€’ Navigating cloud platforms (AWS and/or Azure) β€’ Understanding: β€’ Security groups / NSGs β€’ IAM users, roles, and policies β€’ Storage services (S3, Blob Storage) β€’ Identifying cloud-specific misconfigurations and exposure risk Red / Purple Team & Social Engineering Requirements This role requires demonstrated interest or experience in: β€’ Adversary emulation and red team testing β€’ Purple team collaboration with SOC and detection teams β€’ Social engineering techniques and ethical execution β€’ Translating attacker actions into defensive improvement opportunities Candidates should be motivated to think like attackers while improving organizational resilience. Soft Skills & Professional Expectations β€’ Strong curiosity and desire to continuously improve offensive skills β€’ Ability to accept feedback and iterate on findings and techniques β€’ Professional judgment, ethical conduct, and respect for authorization boundaries β€’ Clear written and verbal communication skills β€’ Ability to collaborate effectively across offensive and defensive teams Certifications (Optional but Beneficial) While hands-on ability is prioritized, certifications that align with this role include: β€’ Network or security fundamentals β€’ Offensive security or red team–oriented certifications β€’ Social engineering or adversary emulation training Who is Evolve Security? Evolve Security is a cybersecur

Apply Now

Apply Now
Apply Now β†’

Similar Jobs

Experienced Registered Behavior Technician for In-Home ABA Therapy - Atlanta, GA

Remote

Immediate Hiring: Experienced Registered Behavioral Technician (RBT) for Clinic-Based ABA Therapy Services

Remote

Experienced Registered Behavioral Technician (RBT) - ABA Therapy for Children with Autism Spectrum Disorder

Remote

Experienced Registered Nurse - Telehealth: Providing Remote Care Coordination and Patient Support

Remote

Experienced Substitute Teacher for Riverside County Schools - Join Scoot Education's Innovative Team

Remote

Experienced Substitute Teacher for San Bernardino County - Flexible Schedules & Competitive Pay

Remote

Experienced School Year Instructional Coach for High-Dosage Tutoring Programs in Edgewater Park, NJ

Remote

Experienced School Year Tutor for K-8 Students in Math and Literacy - Mickleton, NJ

Remote

Experienced Secondary Social Studies Teacher for Kansas - Flexible Hybrid Remote Arrangement

Remote

USPS Office Helper

Remote

**Experienced Customer Service Representative – Overnight Shift – Remote Opportunity at arenaflex**

Remote

Cloud Engineer II - Cloud Services

Remote

Graphic Designer – SLAMU NCAA Apparel

Remote

Part-Time Clinical Trial Participant (Hiring Immediately)

Remote

Senior Databricks Engineer

Remote

Experienced Full Stack Customer Service Representative – Live Chat & Phone Support with Opportunities for Career Growth at Blithequark

Remote

Remote Graphic Designer

Remote

[Remote] Senior Accounts Payable Specialist - Global Financial Services Company - 100% Remote

Remote

**Experienced Customer Service Representative – Remote Opportunity with blithequark**

Remote

Certified Peer Support Specialist, Medication Assisted Treatment (MAT)

Remote
← Back