Job Overview
Location
US - Remote
Job Type
Full-time
Category
Security Engineer
Date Posted
April 2, 2026
Full Job Description
đź“‹ Description
- • As a Penetration Testing Analyst at Moose Labs LLC (operating under Rapid7), you will play a critical role in strengthening clients’ security postures by identifying vulnerabilities through offensive security techniques, directly contributing to risk reduction and resilience in an increasingly hostile digital landscape.
- • You will conduct technical penetration tests across diverse environments—including internal, external, and wireless networks; web applications and APIs; and social engineering scenarios (both on-premise and remote)—to simulate real-world attack vectors and uncover exploitable weaknesses before malicious actors can.
- • Your daily responsibilities include producing meticulously detailed, client-ready reports that clearly document findings, remediation guidance, and risk ratings, while also peer-reviewing colleagues’ work to ensure technical accuracy, clarity, and consistency across deliverables.
- • You will translate complex technical vulnerabilities into actionable business insights for non-technical stakeholders, enabling executives and IT teams to prioritize fixes based on actual risk impact rather than just technical severity.
- • You will contribute to the development of Executive Briefings that summarize engagement outcomes for leadership audiences, aligning technical findings with strategic business objectives and compliance goals.
- • Operating within a fast-paced, high-autonomy environment, you will be expected to manage solo engagements from scoping to delivery, demonstrating initiative, adaptability, and ownership of end-to-end testing lifecycles.
- • You will actively participate in industry conferences, professional organizations (such as OWASP, DEF CON, or Black Hat), and internal knowledge-sharing sessions to stay current with emerging threats, tools, and methodologies in offensive security.
- • As part of Rapid7’s Global Services team, you will collaborate with a multidisciplinary group of security professionals dedicated to advancing client security maturity through proactive testing, continuous learning, and a shared commitment to excellence.
- • This role offers significant growth opportunities: you will deepen your expertise in advanced penetration testing techniques, refine your reporting and communication skills, and build a portfolio of impactful engagements that position you for senior technical or leadership roles in cybersecurity.
- • You will embody Rapid7’s core values—innovation, integrity, collaboration, and customer obsession—by advocating for clients’ long-term security resilience, not just identifying flaws, but enabling sustainable remediation and risk mitigation strategies.
🎯 Requirements
- • 3+ years of hands-on experience in an active technical security role, preferably in penetration testing, red teaming, or security consulting.
- • Proven experience with modern penetration testing tools and methodologies (e.g., Burp Suite, Nmap, Metasploit, Wireshark, Nessus, or similar) across network, web application, API, and wireless domains.
- • Strong foundational knowledge of Windows, Linux, and UNIX operating systems, including internals, scripting, and command-line proficiency, alongside deep understanding of TCP/IP, DNS, HTTP/HTTPS, and related protocols.
- • Experience using interpreted languages (Python, Ruby, PHP) for automation or exploit development, and familiarity with compiled languages (C, C++, Java, Assembly) to understand low-level vulnerabilities.
- • Demonstrated experience with social engineering techniques (phishing, pretexting, baiting) in both physical and digital contexts.
- • Bachelor’s degree in Computer Science, MIS, CIS, or a related technical field, or equivalent professional experience.
- • Hold or be actively pursuing recognized offensive security certifications such as GPEN, CPTS, OSCP, or equivalent.
- • Excellent written and verbal communication skills, with the ability to clearly convey technical risks to non-technical audiences and advocate for meaningful security improvements.
🏖️ Benefits
- • Competitive annual salary range of $89,300 to $120,800 USD, based on experience, skills, and certifications, with additional variable/incentive compensation, equity, and benefits available.
- • Fully remote work flexibility within the United States, enabling you to contribute from any location while maintaining collaboration with a distributed, high-performing Global Services team.
- • Access to Rapid7’s industry-leading security platform and tools, including InsightIDR, InsightVM, and Metasploit, empowering you to conduct cutting-edge assessments with enterprise-grade resources.
- • Professional development support, including reimbursement for certifications (e.g., OSCP, GPEN), conference attendance (e.g., Black Hat, DEF CON), and training programs to stay ahead of evolving threats.
- • Comprehensive health, dental, and vision insurance plans, plus 401(k) matching, paid time off, parental leave, and employee assistance programs designed to support holistic well-being.
- • A culture of innovation and inclusion where your ideas are valued, continuous learning is encouraged, and you’ll work alongside passionate experts committed to building a safer digital world.
Skills & Technologies
Python
Java
PHP
Ruby
Linux
Remote
Degree Required
About Moose Labs LLC
Moose Labs LLC designs and sells personal filtration products, most notably the MouthPeace and MouthPeace Mini silicone mouthpiece adapters that fit water pipes, vapes and joints. Founded in 2014, the California-based company uses activated carbon filters to reduce tar, resins and contaminants. Its line also includes smell-proof storage cases, cleaning solutions and branded accessories. Products are sold online and through smoke shops worldwide, targeting recreational cannabis consumers seeking cleaner intake. The firm emphasizes medical-grade materials and third-party lab testing while maintaining a playful, outdoor-oriented brand identity anchored by the Moose mascot and eco-friendly packaging initiatives.
Get more remote jobs like this
Subscribe to the weekly newsletter for similar remote roles and curated hiring updates.
Newsletter
Weekly remote jobs and featured talent.
No spam. Only curated remote roles and product updates. You can unsubscribe anytime.
