This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more.

Role Description

We are a passionate team of highly trained, proactive, ethical hackers. We provide expert-level penetration testing services that are thorough and tailored to help foster a safe digital space where everyone has the right to privacy and security. Packetlabs consultants find weaknesses others overlook and continuously learn new ways to evade controls. We hold ourselves to a very high standard.

Who we are looking for

Core values:

• You have a customer-first mentality.
• Great communicator with clients, project managers, and teammates.
• Rapid responses and on time.
• You deliver work that you take pride in; your work is an autograph of your excellence.
• You dig deeper into every finding; you don't stop until impact is proven.
• You are comfortable being uncomfortable; you go towards obstacles, not away from them.
• You are always learning; cybersecurity is changing every day.
• Be deeply aware of your skillset and be willing to improve.
• You are self-motivated and dependable.
• You are humble; egos don't have a place at Packetlabs.

Education and experience:

• Solid working knowledge of programming languages, including C, C#, Python, Objective-C, Java, JavaScript, SQL, and frameworks like AngularJS.
• Familiarity with web services and data exchange formats such as XML, JSON, SOAP, REST, and AJAX.
• Understanding of AI/LLM weaknesses and flaws in applications.
• Extensive experience/expertise in using an attack proxy (e.g. Burp Suite).
• Preferred if you have 3 - 5 years of experience working in penetration testing and consulting.
• A graduate of a post-secondary college or university degree program.
• At least two years of experience dealing with information security-related tasks.
• Professional qualifications (one or more): OSCP, OSWE, BSCP.
• OSCP or Burp is mandatory for our organization.

What you’ll be doing

• Your primary role is to perform penetration testing of web applications, mobile applications, thick clients, and APIs.
• Source code review and whitebox penetration testing to prove the impact of application flaws.
• Reverse engineering of mobile and thick client applications.
• You sometimes chain application flaws to other areas, such as cloud and on-prem AD infrastructure.
• Develop detailed reports on findings and remediations for impactful findings.
• Perform SAST and DAST on enterprise, SaaS, and custom in-house applications.
• Experience in using scanners and knowledge of validation and elimination of false positives.
• A strong understanding of OWASP in Web, API, Mobile, and AI/LLM is necessary.

Benefits

• Amazing team and working environment.
• Competitive compensation and pay for performance.
• Employee growth and development.
• Fully remote (in Texas).

At-Will Employment

This position is at-will, and this job posting does not constitute an employment contract or guarantee of continued employment.

How to Apply

If this sounds like you, apply today. We’re looking for someone who wants to build a career in cybersecurity and is ready to make an impact.