Hiring For Senior Penetration Tester

LabVantage Solutions is an industry-leading provider of laboratory software products that support scientific innovation and regulatory compliance across industries such as pharmaceuticals, environmental testing, and food and beverage production. Our OLTP-based solution leverages RDBMS platforms, including Oracle, SQL Server, and EDB (Postgres for our SaaS offering).

The Penetration Tester plays a critical role in strengthening LabVantages security posture by simulating real-world attack scenarios across applications, systems, APIs, and cloud infrastructure. This includes conducting black-box, white-box, and grey-box assessments, identifying and exploiting vulnerabilities, and collaborating with engineering teams to remediate findings. Additional responsibilities include performing social engineering campaigns, reviewing third-party services, and contributing to secure architecture evaluations.

Job Qualifications Necessary:

• Education: Bachelors degree in Cybersecurity, Computer Science, Information Security, or a related field.

Experience:

1. 7+ years of experience in information security, with at least 3 years focused on offensive security, red teaming, or penetration testing roles.
2. Experience with secure coding practices, code reviews, and security testing.
3. Experience with static and dynamic code analysis tools.

Experience with CI/CD pipelines and integrating security into DevOps processes.

Certifications:

1. OSCP (required)
2. OSEP, CRTP, PNPT, or OSWE (preferred)

CEH (less preferred but acceptable)

Skills:

1. Strong understanding of security principles, protocols, and best practices.
2. Proficiency in offensive security tools, including but not limited to:

• Burp Suite Pro
• Metasploit
• Nmap
• Kali Linux, Parrot OS
• BloodHound / SharpHound
• Wireshark
• SQLmap

Hydra, John the Ripper

Cloud/Saas Testing familiarity with:

• AWS/Azure/GCP attack surfaces
• CNAPPs like Wiz, Orca, or Prisma Cloud

Programming Language and scripting:

• Proficient in scripting languages: Python, Bash, PowerShell
• Java, JavaScript familiarity for code auditing

1. Knowledge of regulatory requirements and industry standards (e.g., GDPR, ISO 27001, SOC2).
2. Familiarity with the OWASP Top 10 vulnerabilities and mitigation strategies
3. Understanding of NIST cybersecurity standards and frameworks (e.g., NIST CSF, NIST SP 800-53)
4. Excellent analytical and problem-solving skills.
5. Strong communication and collaboration skills.
6. Ability to work independently and as part of a team.