Note: The job is a remote job and is open to candidates in USA. Piper Companies is a fast-growing security firm seeking an Internal Penetration Tester to join their high-impact cybersecurity team. The role focuses on identifying and exploiting vulnerabilities across enterprise environments, supporting proactive threat detection, and driving continuous security improvement.
Responsibilities
• Conduct internal penetration tests across Windows and Linux environments, simulating real-world adversarial tactics.
• Perform manual, hands-on keyboard testing to identify vulnerabilities, misconfigurations, and lateral movement paths.
• Customize and configure penetration testing tools to suit client-specific environments and objectives.
• Deliver clear, technically sound reports and present findings to both technical and non-technical stakeholders.
• Analyze Active Directory structures and registry configurations to uncover privilege escalation and persistence opportunities.
• Apply current TTPs (Tactics, Techniques, and Procedures) used by threat actors to assess organizational resilience.
• Collaborate with Red and Purple Teams to enhance detection capabilities and validate defensive controls.
• Script automation and exploit development using Python, PowerShell, Bash, or similar languages.
• Work independently and as part of a team to execute major client engagements with precision and professionalism.
• Provide consulting support to clients, helping them understand risks and prioritize remediation strategies.
• Maintain up-to-date knowledge of emerging threats, vulnerabilities, and security tools.
Skills
• 5+ years of experience in internal penetration testing or offensive security.
• Strong proficiency in Windows and Linux operating systems, including registry and AD analysis.
• Experience with tools such as BloodHound, Mimikatz, Metasploit, Cobalt Strike, and custom scripts.
• Proven ability to customize and configure tools for unique testing scenarios.
• Solid scripting skills in Python, PowerShell, Bash, or similar.
• Familiarity with Red Team and Purple Team methodologies and collaboration.
• Excellent technical writing and client communication skills.
• Ability to work autonomously and within a team on complex engagements.
• Understanding of attacker TTPs and threat modeling frameworks (e.g., MITRE ATT&CK).
• Relevant certifications (e.g., OSCP, CRTP, PNPT, CEH) are a strong plus.
Benefits
• Medical
• Dental
• Vision
• 401K
• PTO
• Sick Leave (as required by law)
• Holidays
Company Overview
• At Piper, we obsess about the success of our customers and consultants. It was founded in 2011, and is headquartered in McLean, VA, US, with a workforce of 501-1000 employees. Its website is http://www.pipercompanies.com.
Company H1B Sponsorship
• Piper Companies has a track record of offering H1B sponsorships, with 5 in 2025, 1 in 2024, 2 in 2023, 2 in 2022, 1 in 2021. Please note that this does not guarantee sponsorship for this specific role.
Apply Now
Apply Now