"Alerted.org

Job Description

An employer is looking for a Penetration tester in the Bogota, Colombia area. You will primarily be focused on penetration testing and red team operations. In this role, you will assess enterprise networks or applications, conduct external/internal penetration tests, and contribute to adversary simulation exercises. The ideal candidate has hands-on experience with offensive security tools, exploit development, and a solid understanding of attack methodologies.

Key Responsibilities

Conduct penetration testing on internal/external networks, applications, Active Directory, and cloud environments.

Participate in red team operations, simulating real-world cyber threats and adversary tactics.

Exploit vulnerabilities in Windows and Linux environments, focusing on privilege escalation, lateral movement, and persistence techniques.

Utilize tools such as Cobalt Strike, BloodHound, CrackMapExec, Responder, and Metasploit.

Research and develop custom attack scripts or tooling for engagements.

Collaborate with blue teams to enhance security detections and incident response capabilities.

We are a company committed to creating inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity employer that believes everyone matters. Qualified candidates will receive consideration for employment opportunities without regard to race, religion, sex, age, marital status, national origin, sexual orientation, citizenship status, disability, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to [email protected] . The EEOC "Know Your Rights" Poster is available here (https://www.eeoc.gov/sites/default/files/2023-06/22-088\_EEOC\_KnowYourRights6.12ScreenRdr.pdf) .

To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/ .

Skills and Requirements

2+ years experience in penetration testing/ red team operations

Knowlegde around MITRE ATT&CK framework and common TTPs used in red team assessments

Experience with Active Directory enumeration and attack techniques

Strong knowledge of network protocols, firewalls, VPNs, and perimeter security

Familiarity with Kali Linux, PowerShell Empire, Covenant, and other offensive security frameworks.

Scripting proficiency in Python, PowerShell or Bash as it relates to automation

Familiarity with Windows Event Logs, SIEM evasion techniques, and EDR bypass methods OSCP, OSCE, PNPT, or similar certifications

Capture The Flag (CTF) experience, particularly with network exploitation and Active Directory challenges.

Red team experience with phishing campaigns, adversary simulation, or physical security testing. null

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal employment opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment without regard to race, color, ethnicity, religion,sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military oruniformed service member status, or any other status or characteristic protected by applicable laws, regulations, andordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request to [email protected].