Penetration Tester

Insight Global is looking for a Penetration Tester to support one of our clients cybersecurity operations, specifically around network penetration testing coordination. The consultant will work closely with internal teams to plan, execute, and document penetration tests, assess vulnerabilities, and provide actionable recommendations.

• Coordinate and conduct penetration tests (network-focused).
• Define test scope, methodology, and execution plans.
• Analyze vulnerabilities using CVSS 4.0 and document findings.
• Maintain a vulnerability register and provide mitigation strategies.
• Support incident response and forensic analysis.
• Deliver executive summaries and detailed technical reports.
• Advise on improving detection, traceability, and evidence handling.

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.

• 8+ years in cybersecurity.
• 5+ years in penetration testing and vulnerability assessments.
• 160+ days/year of hands-on pentesting in the last 5 years.
• Experience with:
• Threat/risk assessments (MEHARI, EBIOS, OCTAVE).
• Complex infrastructure testing (OWASP, OSSTMM).
• Social engineering tests.
• Secure code reviews (OWASP or equivalent).
• Physical intrusion testing.
• Executive-level reporting experience.
• At least one of the following certifications:
• CRTP, CRTE, OSCP, or eWPTX.
Code review certification (e.g., OSWE, CSSLP, GSSP, CASE, s-CSPL).

Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.