Remote Contract Penetration Testers at Defiant Open Startup
Remote HealthPost a job

find a remote job
work from anywhere

The largest collection of Remote Jobs for Digital Nomads online. Get a remote job you can do anywhere at Remote Companies like Toptal, Zapier and Automattic who embrace the future. There are 44,850+ jobs that allow you to work anywhere and live anywhere.



👉 Hiring remotely? Reach 1,000,000+ remote workers on the 🏆 #1 remote jobs board

Post a job
Hide this
Remote Health by SafetyWing
Global health insurance for freelancers & remote workers
Remote Health by SafetyWing
Global health insurance for freelancers & remote workers
Advertise here



Contract Penetration Testers


This job post is closed and the position is probably filled. Please do not apply.
\nDefiant is a cybersecurity company that delivers the best threat protection for WordPress sites. We are a 100% remote team, fast moving, nimble, and self managed.\n\nWe are looking for contract penetration testers to join our team for a short-term project of approximately 6 weeks in duration at 20-30 hours per week. You will be working with our Director of Information Security and a small team that will be testing our network infrastructure and web applications to find security vulnerabilities that an attacker could exploit. If security is your passion and you love doing CTFs in your spare time, then you're exactly who we are looking for to join our team.\n\n\n* 5+ years of web application and network penetration testing experience.\n\n* At least 2 of the following OSCP, CEH, OSCE, GPEN, GWAPT, LPT and/or other equivalent certifications that are valid and not expired.\n\n* Experience with tools, such as Metasploit, NMAP, Burpsuite, and other various tools and vulnerability scanners.\n\n* Practical knowledge and experience with Linux operating systems, wordpress, wordpress plugins, API's, AWS architecture, RDS, Redis, Bash, Python, PHP, Laravel, nginx and apache.\n\n* Familiar with offensive TTPs (Tactics, Techniques and Procedures) including post-exploitation and lateral movement.\n\n* Familiar with the fundamentals of web applications including authentication, session management, requests, form submittal, etc.\n\n* Understanding and ability to exploit Cross Site Scripting, SQL injection, RCE and other common vulnerabilities.\n\n* Deep understanding of security fundamentals and common vulnerabilities (e.g. OWASP Top Ten).\n\n* Ability to create comprehensive report of findings and provide remedial recommendations after testing is complete.\n\n* Thorough understanding of network protocols, data on the wire, and covert channels.\n\n* Excellent communication skills.\n\n* Must be a creative and critical thinker.\n\n* Highly motivated, deeply passionate and able to work with little oversight or direction.\n\n* Previous Red or Purple team exercise experience desired.\n\n\n\n\nBenefits\n\n\n* Work remotely from wherever you have a secure internet connection\n\n* Work whatever hours are best for you (20-30 per week); could be a side gig\n\n\n

See more jobs at Defiant

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.