Security Analyst, Penetration Tester

US Remote


Level up SecOps with the only endpoint to cloud, unified cybersecurity platform. Confidently act to prevent breaches with a leading MDR partner. Request demo!

View all jobs at Rapid7

Apply now Apply later

Job Title

Penetration Tester, Analyst

Do you enjoy attacking networks? Do you enjoy hacking custom protocols implemented in embedded devices? As a penetration tester on the Global Services team at Rapid7, you will help our clients improve their security posture through your technical skills and knowledge of defense strategies.

About the Team

Here at Rapid7, our penetration testing consultants have come to us with various skills, ranging from multiple years within a blue team environment, helping to protect the company infrastructure, giving yearly security training sessions, and more.  We also have individuals with numerous years within the offensive security field, with vast amounts of experience in Red Team, IoT, exploitation development, and more. At Rapid7, you're not alone in testing, which is something even our clients know.  You're not just getting one pentester, you're getting them all.

About the Role

Within Rapid7, every employee will learn about our Core Values. These values are important at every level.  This is at the forefront of an excellent consultant. Bring your awesome communication skills, timely delivery of reports, consume knowledge and experience from others, and contribute back to the community and Rapid7 as a whole. Our pentest consultants will test against various types of engagements, including network, web app, phishing/vishing, Red Team, IoT, Cloud, etc..

In this role, you will need:

  • Excellent communication skills both with internal and external stakeholders

  • Collaborative mindset, contributing to knowledge sharing and cross training

  • Technical competencies, including previous technical consulting experience

  • High quality report writing and peer reviewing

  • Knowledge of Cybersecurity standards and industry best practices

  • Check your ego at the door

The skills you’ll bring include:

  • 3+ years in an active technical security role 

  • Basic knowledge of the following: 

    • Modern penetration testing tools and methods 

    • Network security concepts 

    • Web-based application security concepts 

    • IEEE 802.11 security concepts 

    • Windows/Linux/UNIX internals 

    • Internet protocol suite 

    • Experience using interpreted languages (Ruby, Python, PHP, etc.) 

    • Knowledge of compiled languages (Java, C, C++, Assembly, etc.) 

    • Social engineering techniques and tactics 

  • Strong written and verbal skills 

  • Knowledge of common I.T. governance guidance

  • A customer driven mindset, focused on ensuring a fantastic customer experience, and ability to translate technical concepts and convey them to non-security personnel

  • Ability to ask for help!

  • Up to 25% - 30% travel will be required

Job Pluses:

  • Previous technical security consulting experience 

  • Bachelor’s degree or equivalent experience in Computer Science, MIS, CIS or related field

  • Certifications such as GPEN or OSCP

We know that the best ideas and solutions come from multi-dimensional teams. That’s because these teams reflect a variety of backgrounds and professional experiences. If you are excited about this role and feel your experience can make an impact, please don’t be shy - apply today.

About Rapid7

At Rapid7, we are on a mission to create a secure digital world for our customers, our industry, and our communities. We do this by embracing tenacity, passion, and collaboration to challenge what’s possible and drive extraordinary impact.

Here, we’re building a dynamic workplace where everyone can have the career experience of a lifetime. We challenge ourselves to grow to our full potential. We learn from our missteps and celebrate our victories. We come to work every day to push boundaries in cybersecurity and keep our 11,000+ global customers ahead of whatever’s next.

Join us and bring your unique experiences and perspectives to tackle some of the world’s biggest security challenges.


All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability, protected veteran status or any other status protected by applicable national, federal, state or local law.

Apply now Apply later
  • Share this job via
  • or

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  451  119  0

Tags: Application security Blue team C Cloud Computer Science Governance GPEN IoT Java Linux Network security Offensive security OSCP Pentesting PHP Python Red team Ruby UNIX Windows

Perks/benefits: Career development

Regions: Remote/Anywhere North America
Country: United States

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.