ZipRecruiter

Log In

1

Pen Tester Jobs (NOW HIRING)

Dark Wolf Solutions

Penetration Tester

Washington, DC · On-site

$130K - $145K/yr

Active professional certifications such as CEH, OSCP, PNPT, GPEN, or similar security/pen testing certifications The salary range for this position is $130,000.00 - $145,000.00 commensurate on ...

Dark Wolf Solutions

Penetration Tester

Herndon, VA · Hybrid

$130K - $145K/yr

Active professional certifications such as CEH, OSCP, PNPT, GPEN, or similar security/pen testing certifications The salary range for this position is $130,000.00 - $145,000.00 commensurate on ...

Pen Test Partners Inc

$75K - $175K/yr

... Pen testing, Consultancy and DFIR) How we will help you PTP attend and sponsor worldwide events every year including Defcon, RSA, ISAC Summits and many more, these are amazing sources of leads PTP ...

Pen Test Partners Inc

Account Executive

Springfield, MA · On-site

$75K - $175K/yr

... Pen testing, Consultancy and DFIR) How we will help you PTP attend and sponsor worldwide events every year including Defcon, RSA, ISAC Summits and many more, these are amazing sources of leads PTP ...

Pen Test Partners Inc

$75K - $175K/yr

... Pen testing, Consultancy and DFIR) How we will help you PTP attend and sponsor worldwide events every year including Defcon, RSA, ISAC Summits and many more, these are amazing sources of leads PTP ...

Leidos

Penetration Tester

Ashburn, VA · On-site

$87K - $157K/yr

... Pen Testing and Vulnerability Assessment,with specificemphasis on web applicationand enterprise network environments. 3-5 (T3) 5-8(T4) years of professional experience in incident detection and ...

CLS-Group

Director, Penetration Testing

Iselin, NJ · Hybrid

$170K - $210K/yr

Proven ability to lead, design, build and operate a pen testing capability or program. * Experience managing third party penetration test providers and assuring quality of delivery. * Experience ...

MrBeast

Senior Embedded InfoSec Engineer

San Francisco, CA

$134K - $185K/yr

A pen testing program you own end-to-end - internal red-team exercises, coordinated external engagements, and continuous validation against real attacker behavior. * Security Architecture : The ...

MrBeast

Senior Embedded InfoSec Engineer

San Francisco, CA · On-site

$134K - $185K/yr

A pen testing program you own end-to-end - internal red-team exercises, coordinated external engagements, and continuous validation against real attacker behavior. * Security Architecture : The ...

M9 Solutions

Penetration Tester II

Chandler, AZ · On-site

Required : • Bachelor's degree. • At least three (3) years of pen test experience. • Experience with continuous penetration testing methodologies. • Experience with planning and conducting ...

M9 Solutions

Penetration Tester II

Washington, DC · On-site

Required : • Bachelor's degree. • At least three (3) years of pen test experience. • Experience with continuous penetration testing methodologies. • Experience with planning and conducting ...

next page

Showing results 1-20

All JobsPen Tester Jobs

Pen Tester information

See salary details

$10

$38

$62

How much do pen tester jobs pay per hour?

As of Jun 9, 2026, the average hourly pay for pen tester in the United States is $38.36, according to ZipRecruiter salary data. Most workers in this role earn between $21.39 and $50.72 per hour, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as a Pen Tester, and why are they important?

To thrive as a Pen Tester, you need a strong understanding of cybersecurity principles, network protocols, and common vulnerabilities, often supported by a degree in computer science or a related field. Familiarity with penetration testing tools like Metasploit, Burp Suite, and certifications such as OSCP or CEH are typically required. Analytical thinking, attention to detail, and clear communication help Pen Testers effectively identify risks and explain findings to technical and non-technical audiences. These skills are crucial for uncovering security weaknesses and helping organizations proactively defend against cyber threats.

What are some common challenges a Pen Tester faces when working with clients?

Pen Testers often encounter challenges such as limited access to necessary systems, incomplete documentation, or time constraints imposed by clients. Additionally, communicating technical findings in a way that is understandable to non-technical stakeholders can be difficult but is crucial to ensure remediation of vulnerabilities. Building trust with clients, maintaining confidentiality, and adapting to rapidly evolving security landscapes are also key aspects of the role.

What is the difference between Pen Tester vs Vulnerability Analyst?

AspectPen TesterVulnerability Analyst
CertificationsOSCP, CEH, GPENOSCP, CEH, CISSP
Work EnvironmentSimulated attacks, penetration testing labsVulnerability scanning, risk assessment
Employer & IndustryCybersecurity firms, IT departmentsSecurity teams, consulting firms

While both roles focus on security, Pen Testers actively exploit vulnerabilities to identify weaknesses, whereas Vulnerability Analysts primarily assess and report on security flaws. Pen Testers perform hands-on testing, often in simulated environments, while Vulnerability Analysts analyze scan results and recommend fixes. Both roles are essential in cybersecurity but differ in approach and daily tasks.

What are Pen Testers?

Pen Testers, or penetration testers, are cybersecurity professionals who simulate cyberattacks on computer systems, networks, or applications to identify security vulnerabilities that could be exploited by malicious hackers. Their goal is to find and help fix security weaknesses before they can be used in real attacks. Pen Testers use a combination of automated tools and manual techniques to assess security, report their findings, and recommend remediation strategies. They play a crucial role in helping organizations improve their security posture and comply with industry regulations.
More about Pen Tester jobs
What cities are hiring for Pen Tester jobs? Cities with the most Pen Tester job openings:
What are the most commonly searched types of Pen Tester jobs? The most popular types of Pen Tester jobs are:
What states have the most Pen Tester jobs? States with the most job openings for Pen Tester jobs include:
What job categories do people searching Pen Tester jobs look for? The top searched job categories for Pen Tester jobs are:
Pen Tester jobs near you
Infographic showing various Pen Tester job openings in the United States as of May 2026, with employment types broken down into 94% Full Time, 5% Part Time, and 1% Contract. Highlights an 53% Physical, 1% Hybrid, and 46% Remote job distribution, with an average salary of $79,791 per year, or $38.4 per hour.
Penetration Tester

Penetration Tester

Dark Wolf Solutions

Washington, DC • On-site

$130K - $145K/yr

Full-time

Posted 12 days ago

Job description

Dark Wolf is actively seeking an experienced Penetration Tester to join our innovative team. This individual will play a critical role in assessing and enhancing the security of various products, including hardware, software, and embedded systems. This role demands a deep understanding of penetration testing methodologies and advanced exploit development, focusing on identifying and mitigating vulnerabilities across a wide range of technologies. As a Junior Product and Hardware Security Penetration Tester, you will have the chance to work on cutting-edge technologies and contribute to the enhancement of security across a wide range of products. If you possess a strong background in penetration testing and a passion for cybersecurity, we encourage you to apply for this pivotal role. This position is set to be supported in a hybrid work environment out of the DC Metro area. Key responsibilities include, but are not limited to:
  • Conducting comprehensive penetration testing on hardware, software, and network components.
  • Performing advanced vulnerability scanning and assessments on all components.
  • Performing a Cybersecurity evaluation of the product under test to identify vulnerabilities that would negatively impact the Confidentiality, Integrity, or Availability of system data or functionality.
  • Analyzing software, firmware, hardware, and/or RF components within the system.
  • Opining on the impact and level of effort required to exploit the identified vulnerabilities as well as providing information on a high-level remediation strategy.
  • Developing and executing exploits and proof-of-concept (PoC) attacks to demonstrate the impact of identified vulnerabilities.
  • Analyzing and reverse engineering firmware and embedded systems to identify security weaknesses.
  • Testing and assessing the security of secure boot processes and Trusted Execution Environments (TEE).
  • Conducting web application security assessments, focusing on OWASP Top Ten vulnerabilities and API security testing.
  • Performing manual verification of vulnerabilities, assessing their risk and exploitability.
  • Engaging in wireless and RF security testing, including penetration testing on Wi-Fi, Bluetooth, and Zigbee networks.
  • Utilizing Software Defined Radio (SDR) for protocol reverse engineering and testing.
  • Reporting detailed findings, documenting case details, and providing actionable recommendations for remediation to enhance product security based on system analysis.
  • Planning and executing full-scale, cross-domain vulnerability assessments, network penetration testing, and phishing/social engineering campaigns.
Required Qualifications:
  • Bachelor's degree in Cybersecurity, Information Technology, Computer Engineering, or a related field
  • Minimum of 2+ years' experience in three or more specific areas to include: intelligence analysis, network engineering, networking security, penetration testing, red team operations, hardware engineering, software engineering, exploit development, reverse engineering, vulnerability assessment, physical security assessments, or social engineering
  • Proficiency with cloud technology and deployments across Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP)
  • Proficiency in the testing and assessment of mobile operating systems, embedded systems, and/or IoT devices
  • Experience in drafting reports, documenting case details, and summarizing findings and recommendations based on system analysis
  • Experience performing advanced vulnerability scanning and assessments on all components
  • Experience conducting web application security assessments, focusing on OWASP Top Ten vulnerabilities and API security testing
  • Demonstrated strong written and verbal communication skills
  • Strong understanding of NIST 800-53 frameworks
  • US Citizenship and an active security clearance at a minimum of the Secret Level
Desired Qualifications:
  • Familiarity with NIST 800-171 Revision 2
  • Proven ability to develop and execute complex exploits and PoC attacks
  • Strong analytical skills and experience in firmware, binary exploitation, and embedded systems testing
  • Advanced knowledge of Software Defined Radio (SDR) and protocol reverse engineering
  • Active professional certifications such as CEH, OSCP, PNPT, GPEN, or similar security/pen testing certifications

The salary range for this position is $130,000.00 - $145,000.00 commensurate on experience and technical skillset.
We are open to considering a variety of levels of experience for these projects and potential for 1099 hourly opportunity.
We are proud to be an EEO/AA Employer Minorities/Women/Veterans/Disabled and other protected categories.
In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification from upon hire.

Apply