Explore the latest penetration tester jobs from companies hiring across the globe. This page features curated opportunities for ethical hackers and security professionals who identify vulnerabilities in systems, networks, and applications before malicious attackers can exploit them.
Description
The Junior Penetration Tester supports security assessments by planning and executing tests on web applications, infrastructure, cloud environments, and other technologies connected to the client network. Responsibilities include developing test plans, performing vulnerability and risk analyses, automating testing processes, and mapping findings to NIST SP 800-53 controls to ensure compliance and improve security posture.
• Conduct security testing of IT assets, web applications, infrastructure assets and technologies, mobile applications, custom developed software implementations, virtual technologies, COTS products, cloud implementations, common application platforms, and other technologies connecting to or interacting with the Judiciary network.
• Develop and maintain a repeatable methodology for performing security testing. Security test planning should include, but is not limited to: threat modeling, map business requirements to the applicable security requirements, determine appropriate security controls, test scenarios and test cases.
• Develop the Security Test Plans.
• Perform security testing, vulnerability analysis, and risk analysis in accordance with an industry-proven, repeatable methodology.
• Evaluate the effectiveness of security controls as they relate to the applicable security controls of the system tested.
• Relate test results to controls in NIST SP 800-53, as reflected in the JISF.
• Develop, maintain and use customized testing scripts (testing automation) for individual and team use.
• Develop and deliver reports as required.
Requirements
• Knowledge and experience with manual host testing per CIS benchmarks.
• Strong knowledge of and experience with Burp Suite.
• Strong knowledge of and experience with Qualys.
• 3+ years of experience in the information technology field.
• Knowledge of and experience with Nessus.
• Knowledge of OWASP Top 10.
• Some penetration testing experience required.
• Prefer knowledge of and experience with the following tools:
• Acunetix
• Appdetective
• DbVisualizer
• Knowledge of NIST SPs and NIST Risk Management Framework (RMF).
• Knowledge of computer networking concepts and protocols, and network security methodologies.
• Strong attention to detail.
Education: Bachelor's Degree in STEM field preferred.
Certification: Industry standard certification (e.g. Security+) strongly preferred.
Clearance: Ability to obtain and maintain a Public Trust required.
The salary range for this position depends upon multiple factors including location, the individual's knowledge, skills, competencies, and experience, and contract-specific budget constraints and organizational requirements.
Gunnison Consulting Group's total compensation package also includes bonus and profit-sharing opportunities, depending on company and employee performance. Available employee benefits include:
• 3 weeks of Personal Leave your first year
• 11 paid Holidays each year
• 5 days of Flexible Time Off each year
• 401(k) company match at 50% up to 10% of your salary
• Medical, Dental and Vision Insurance
• Life and Disability Insurance
• Public Transportation Subsidies
• Certifications and Training Allowance - $2,500/year!
Why Join Gunnison?
• Gunnison takes on ambitious projects. We target fun, challenging work that requires creative thinking and innovation.
• Quality is our top priority.
• Gunnison employee benefits meet or exceed what other companies in the Washington, D.C. metropolitan area offer.
• There is a great sense of camaraderie at Gunnison. This is an atmosphere we will maintain as we continue to grow.
• We are growing rapidly and the opportunity for individual professional growth with Gunnison is outstanding.
• We hire for careers at Gunnison, not to fill a position.
Equal Opportunity Employer. Must be eligible for employment in the United States. We are unable to sponsor candidates at this time.
In 1994 Gunnison began serving the greater Washington, D.C. metro area, focused on tackling our customers' most ambitious technology projects. By creating a culture dedicated to enabling our customers and employees to achieve more than they ever thought they could, the company has thrived for over 25 years.
Insights drawn from the latest openings on this page so you can compare employers, locations, and pay before applying.
Top Companies Hiring
Booz Allen Hamilton2 roles
Gunnison Consulting Group1 role
Dark Wolf1 role
Peraton1 role
Leidos1 role
PingWind1 role
Top Locations
Virginia, US5 roles
District of Columbia, US3 roles
Remote1 role
Maryland, US1 role
10% of these openings can be done remotely.
Salary Range Overview
Across 10 listings, advertised pay ranges from USD 60k to USD 198k.
Typical band: USD 84k – 150k.
Figures reflect employer-disclosed salaries on current openings and may vary by location, experience, and company stage.
Employment Types
Full-Time9 roles
Internship1 role
Get Ready for a penetration tester Interview
Free Skillora tools tailored to this role: practise the exact questions you'll face, benchmark salary expectations, and tune your resume before you apply.
Here are some of the latest openings matching this category. Browse the full list above to filter by location, experience, and employment type.
#1Junior Penetration Tester
Gunnison Consulting GroupWashington, District of Columbia, USFull-TimeUSD 65k–71k / yearPosted Jun 26, 2026
Description The Junior Penetration Tester supports security assessments by planning and executing tests on web applications, infrastructure, cloud environments, and other technologies connected to the client network. Responsibilities include developing test plans, performing vulnerability and risk analyses, automating …
Booz Allen HamiltonMcLean, Virginia, USFull-TimeUSD 87k–198k / yearPosted Jun 27, 2026
Penetration Tester, Senior The Opportunity: Serve as a member of the Booz Allen Internal Red Team, leading enterprise and system-focused network and penetration assessments to identify security risks across applications, security controls, and network infrastructure. Conduct targeted security assessments within a fast-…
Dark WolfWashington, District of Columbia, USInternshipPosted May 31, 2026
Responsibilities Dark Wolf is actively seeking an experienced Penetration Tester to join our innovative team. This individual will play a critical role in assessing and enhancing the security of various products, including hardware, software, and embedded systems. This role demands a deep understanding of penetration t…
Responsibilities Peraton is currently seeking a Jr Cyber Penetration Tester to become part of our Federal Strategic Cyber Group. Location: Arlington, VA. Situational Telework. Must be local to the job site. This Federal Strategic Cyber program encompasses technical, engineering, data analytics, cyber security, manageme…
LeidosHerndon, Virginia, USFull-TimePosted Jun 26, 2026
Description Leidos is seeking a Penetration Tester to support an enterprise IT program. We are looking for a cyber security professional to conduct penetration testing and ethical hacking, to target, assess, and exploit risk and vulnerabilities of information systems. This candidate is expected to have hands on penetra…
Location: Alexandria, Va Required Clearance: Top Secret Clearance Certifications: Holds or is working toward penetration testing and offensive security certifications appropriate for DoD environments, such as CEH, PenTest+, GPEN, OSCP, or equivalent DoD 8570/8140-approved cybersecurity certifications. Required Educatio…
Dragos is on a relentless mission to defend industrial organizations that provide us with the necessities of modern civilization; running water, functioning electricity, and safe industrial working environments. As the market leader in ICS/OT Cybersecurity, we are dedicated to arming our customers with best-in-class te…
M9 SolutionsWashington, District of Columbia, USFull-TimeUSD 60k–180k / yearPosted Jun 27, 2026
M9 Solutions is dedicated to providing IT services and solutions to the Federal Government by mobilizing the right people, skills, clearance levels, and technologies to help organizations that desire improved performance and modern, sustainable change. M9 has provided quality IT services and support to more than 30 Fed…
Booz Allen HamiltonArlington, Virginia, USFull-TimePosted Jun 12, 2026
Job Number: R0242153 Penetration Testing Engineer The Opportunity: We’re mission accelerators who protect and advance national interests by harnessing cutting-edge technology. As a penetration tester, you'll play a pivotal role in safeguarding our critical digital environments. Your ability to perform penetration testi…
ATTAINX INCSilver Spring, Maryland, USFull-TimeUSD 125k–150k / year
Job Title: IT Security Specialist – Penetration Tester Location: Hybrid (Reside within a commutable distance of Silver Spring, MD to work onsite as required) Citizenship: US Citizen Security Clearance: Moderate Public Trust AttainX, Inc. is in search of a highly energetic Penetration Tester to join our team on a cyber …
Explore the latest penetration tester jobs from companies hiring across the globe. This page features curated opportunities for ethical hackers and security professionals who identify vulnerabilities in systems, networks, and applications before malicious attackers can exploit them.
Penetration Testers simulate real-world cyberattacks to assess the security posture of organizations. Employers are seeking candidates with expertise in web application testing, network penetration testing, social engineering, exploit development, and security assessment methodologies such as OWASP and PTES. Proficiency with tools like Burp Suite, Metasploit, Nmap, Kali Linux, and custom scripting is frequently required.
These roles are in demand across industries including financial services, healthcare, government, defense contractors, technology companies, and cybersecurity consulting firms. Many positions also involve writing detailed security reports and working with development teams to remediate discovered vulnerabilities.
Our curated listings include remote, hybrid, and onsite positions across North America, Europe, Asia-Pacific, and other global markets. Many roles offer competitive compensation, certification support (OSCP, CEH, GPEN), and opportunities to work on high-stakes security engagements.
Each job posting provides detailed information about required skills, certifications, and application instructions to help you find penetration testing roles that match your expertise.
Prepare for Your Next Interview
Found a role you like? Practice with Skillora's AI-powered mock interviews tailored to the specific job you're applying for. Get real-time feedback and improve your chances of landing the offer.