Senior Penetration Tester for Vulnerability Remediation

CoreData Systems

Contract · Flexible hours

About the role

CoreData Systems seeks a senior Penetration Tester to evaluate the security posture of a new SaaS platform before its public launch. The project focuses on identifying vulnerabilities across web applications, APIs, and underlying infrastructure within a tight timeline.

Key responsibilities

• Conduct comprehensive black‑box and white‑box penetration tests on web services and APIs.
• Perform network and host assessments, including port scanning and service enumeration.
• Develop and execute custom exploit scripts to validate findings.
• Document vulnerabilities with clear remediation guidance and risk ratings.
• Collaborate with development and ops teams to verify fixes.
• Prepare a detailed final report summarizing findings and recommendations.

Must-have skills

• 10+ years of hands‑on penetration testing experience.
• Deep knowledge of OWASP Top 10, CWE, and industry best practices.
• Proficiency in Python for scripting and automation.
• Strong Linux command‑line skills and familiarity with security tools (Burp Suite, Nmap, Metasploit).
• Excellent written communication for reporting complex technical issues.

Nice to have

• Experience with cloud environments (AWS, Azure) security assessments.
• Relevant certifications such as OSCP or GPEN.