Senior Penetration Tester

Job Description

The Senior Penetration Tester is responsible for establishing, governing, and performing penetration testing activities within the ContiTech SOC. The role drives enterprise-wide testing standards and provides expert guidance to stakeholders to improve the overall security posture.

Key Responsibilities

• Design, implement, and govern enterprise-wide penetration testing standards, processes, and methodologies
• Conduct advanced penetration tests and security assessments across networks, applications (including web applications and mobile environments), and infrastructure
• Identify, exploit, and assess vulnerabilities, and translate findings into risk-based remediation actions
• Act as subject matter expert and advisor to IT, application owners, and business stakeholders on security risks and architecture
• Manage and continuously improve penetration testing services, including external providers and tooling
• Support incident response and threat assessments through offensive security expertise
• Communicate technical findings clearly to technical and non-technical stakeholders and senior management
• Contribute to cybersecurity governance, awareness, and integration with SOC operations and detection capabilities

Qualifications

Qualifications

• Bachelor’s degree in computer science, Cybersecurity, or a related field (or equivalent experience)
• Relevant certifications such as OSCP, CEH, or GPEN
• Strong knowledge of penetration testing methodologies, tools (e.g., Metasploit, Burp Suite, Nmap), and frameworks
• Deep understanding of network, system, and application security
• Solid knowledge of cybersecurity governance, risk management, and IT service management
• Strong analytical, problem-solving, and communication skills

Experience

• 5–7+ years of experience in cybersecurity with a focus on penetration testing or offensive security
• Proven experience performing and leading complex penetration testing engagements and security assessments
• Experience working within SOC environments or closely with incident response and threat detection teams
• Experience managing external vendors or working in service-oriented security delivery models
• Experience in global, cross-functional enterprise environments
• Demonstrated ability to translate technical vulnerabilities into business risk and mitigation strategies

Additional Information

Ready to drive with Continental? Take the first step and fill in the online application.