Penetration Tester, Vector Command, Vulnerability Management & External Network

📋 Description

• • Are you a cybersecurity enthusiast with a passion for offensive security and a knack for uncovering hidden vulnerabilities? Do you thrive on the challenge of emulating real-world adversaries to test and strengthen an organization's defenses? If so, Moose Labs LLC is seeking a highly skilled and motivated Penetration Tester to join our dynamic Vector Command team, focusing on Vulnerability Management & External Network assessments.
• • In this pivotal role, you will be at the forefront of our continuous Red Teaming operations, dedicated to enhancing our clients' security posture through rigorous technical assessments and strategic insights. You will be instrumental in identifying, exploiting, and demonstrating the impact of vulnerabilities within client perimeters, moving beyond automated scans to uncover complex attack chains that could lead to a significant breach.
• • Your primary responsibility will be to deliver Rapid7’s Vector Command Continuous Red Teaming service. This involves conducting in-depth external network penetration testing, meticulously managing vulnerability scan dashboards, and proactively identifying and exploiting weaknesses that automated tools might overlook. The core of your work will revolve around continuous perimeter testing, aiming to uncover and validate attack vectors that pose a genuine threat to an organization's security.
• • You will manage and analyze automated vulnerability scan data across a diverse portfolio of numerous customers. Your expertise will be crucial in identifying and validating vulnerabilities that can be effectively leveraged to gain initial access into an organization's network. This requires a keen eye for detail and a deep understanding of how seemingly minor issues can be chained together for maximum impact.
• • A significant part of your role will involve performing hands-on external network penetration testing. You will navigate large and complex attack surfaces, actively searching for vulnerabilities and misconfigurations that often evade standard automated detection methods. This requires a creative and persistent approach to security testing.
• • Upon successful exploitation of a vulnerability, you will collaborate closely with your Vector Command team to evaluate the full impact through sophisticated post-compromise breach simulations. This phase is critical for demonstrating the real-world consequences of security weaknesses and assessing the effectiveness of existing security controls and incident response capabilities.
• • You will be an integral part of a specialized team, participating in daily meetings with other Red Team operators. These collaborative sessions are essential for establishing clear attack objectives, defining operational direction, and sharing intelligence to ensure a cohesive and effective offensive strategy.
• • Building and maintaining strong, positive relationships with clients is a key aspect of this role. You will work to understand their unique business objectives, technical environments, and specific security needs. This client-centric approach ensures that our penetration testing services are not only technically sound but also aligned with the client's strategic goals.
• • You will create additional value for clients by providing continuous insights and consultative advice. Drawing upon your extensive experience with client environments, industry trends, established security standards, and leading practices, you will offer actionable recommendations to improve their overall security resilience.
• • This role demands a proactive and continuous learning mindset, staying abreast of the latest vulnerabilities, emerging threats, shifts in customer attack surfaces, and changes across various customer environments. Your ability to adapt and evolve your testing methodologies will be paramount.
• • You will also be involved in the preparation of comprehensive monthly Red Team reports, detailing findings, methodologies, and recommendations. Furthermore, you will play a role in prioritizing customer requests and ensuring timely and effective service delivery.
• • The position requires a commitment to the entire "end-to-end" testing process, from the initial pre-engagement planning and scoping to providing accountable support during the final remediation phase. Your involvement ensures that clients receive a thorough and actionable security assessment.
• • By embodying our core values, you will contribute to fostering a culture of excellence that drives meaningful impact and collective success within the team and for our clients. This includes a strong emphasis on collaboration, knowledge sharing, and cross-training to elevate the team's overall capabilities.