1

Penetration Testing Manager Jobs (NOW HIRING)

Penetration Testing Manager Location: Hybrid in Princeton or Clifton NJ or Berwyn PA or Austin PA/, Boston, Quincy MA (Must be within drivable distance) Excellent Comms needed with the required ...

Five (5) years of management and supervisory experience within the required experience timeframe ... Licensed Penetration Tester (LPT) Master * GIAC Certified Incident Handler (GCIH) * GIAC ...

Risk management * Federal cybersecurity Minimum Qualifications * Bachelor's degree * Master's preferred * 10+ years of penetration testing experience * 5+ years leading technical teams * Experience ...

Risk management * Federal cybersecurity Minimum Qualifications * Bachelor's degree * Master's preferred * 10+ years of penetration testing experience * 5+ years leading technical teams * Experience ...

New

Five (5) years of management and supervisory experience within the required experience timeframe ... Licensed Penetration Tester (LPT) Master * GIAC Certified Incident Handler (GCIH) * GIAC ...

Risk management * Federal cybersecurity Minimum Qualifications * Bachelor's degree * Master's preferred * 10+ years of penetration testing experience * 5+ years leading technical teams * Experience ...

Five (5) years of management and supervisory experience within the required experience timeframe ... Licensed Penetration Tester (LPT) Master * GIAC Certified Incident Handler (GCIH) * GIAC ...

Five (5) years of management and supervisory experience within the required experience timeframe ... Licensed Penetration Tester (LPT) Master * GIAC Certified Incident Handler (GCIH) * GIAC ...

Five (5) years of management and supervisory experience within the required experience timeframe ... Licensed Penetration Tester (LPT) Master * GIAC Certified Incident Handler (GCIH) * GIAC ...

... management tools, along with cloud and infrastructure assistance as required. Key Responsibilities ... Penetration Testing • Conduct security testing of instrumented or connected applications ...

next page

Showing results 1-20

Penetration Testing Manager information

See salary details

$57K

$133K

$186K

How much do penetration testing manager jobs pay per year?

As of Jul 5, 2026, the average yearly pay for penetration testing manager in the United States is $132,962.00, according to ZipRecruiter salary data. Most workers in this role earn between $111,000.00 and $150,000.00 per year, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as a Penetration Testing Manager, and why are they important?

To thrive as a Penetration Testing Manager, you need deep expertise in cybersecurity, vulnerability assessment, and penetration testing methodologies, typically supported by a relevant degree and certifications like OSCP or CISSP. Familiarity with tools such as Metasploit, Burp Suite, and SIEM systems is essential for effectively managing testing operations. Strong leadership, communication, and project management skills help in guiding teams and translating technical findings for stakeholders. These capabilities are crucial to ensure robust security postures, clear risk communication, and successful management of security testing initiatives.

What does a Penetration Testing Manager do?

A Penetration Testing Manager oversees teams that simulate cyberattacks on an organization's systems, networks, and applications to identify vulnerabilities and assess security risks. They are responsible for planning, coordinating, and ensuring the quality of penetration tests, as well as communicating findings to stakeholders and recommending remediation strategies. Additionally, they often develop testing methodologies, manage team performance, and ensure compliance with industry standards and regulations.

What are some common challenges faced by Penetration Testing Managers when leading a security assessment team?

Penetration Testing Managers often face the challenge of balancing technical depth with project management responsibilities. Coordinating multiple engagements, ensuring consistent testing methodologies, and managing client expectations can be demanding. Additionally, staying updated with evolving threat landscapes and ensuring the team has the necessary skills and certifications are ongoing concerns. Effective communication with both technical staff and non-technical stakeholders is crucial for translating findings into actionable recommendations.

What is the difference between Penetration Testing Manager vs Penetration Tester?

AspectPenetration Testing ManagerPenetration Tester
CertificationsOSCP, CISSP, PMPOSCP, CEH, GPEN
Work EnvironmentOversees teams, manages projects, strategic planningConducts security assessments, performs testing, technical execution
Employer & Industry UsageSecurity firms, large corporations, government agenciesSecurity teams, consulting firms, internal security departments

The main difference is that a Penetration Testing Manager focuses on managing teams, planning projects, and strategic oversight, while a Penetration Tester is hands-on, performing security assessments and testing systems. Both roles require relevant certifications and are integral to cybersecurity, but they differ in responsibilities and scope.

More about Penetration Testing Manager jobs
What cities are hiring for Penetration Testing Manager jobs? Cities with the most Penetration Testing Manager job openings:
What are the most commonly searched types of Penetration Testing jobs? The most popular types of Penetration Testing jobs are:
What states have the most Penetration Testing Manager jobs? States with the most job openings for Penetration Testing Manager jobs include:
Infographic showing various Penetration Testing Manager job openings in the United States as of June 2026, with employment types broken down into 100% Full Time. Highlights an 100% In-person job distribution, with an average salary of $132,962 per year, or $63.9 per hour.
Penetration Testing Manager

Penetration Testing Manager

InterSources

Clifton, NJ • On-site

Other

Posted 9 days ago


Job description

Penetration Testing Manager

Location: Hybrid in Princeton or Clifton NJ or Berwyn PA or Austin PA/, Boston, Quincy MA (Must be within drivable distance) Excellent Comms needed with the required technical background.

Job Description: We are seeking a Manager to lead Client's Penetration Testing Team, reporting into leadership within the Threat Intelligence and Assurance function. This role combines technical leadership with program ownership, focused on delivering high-quality, engineering-driven penetration testing across a complex, highly regulated financial environment. You will be responsible for building and maturing a team that performs rigorous, hands-on assessments across applications, networks, APIs, and cloud platforms, while establishing consistent, risk-aligned testing practices. The Manager is accountable for defining technical standards, ensuring depth and quality of testing, and delivering outputs that are evidence-based, reproducible, and aligned with audit and regulatory expectations. Working closely with engineering, architecture, and risk partners, you will ensure testing results translate into measurable risk reduction and sustained improvements in secure system design and implementation.

What You Will Be Responsible For

As a Manager, Penetration Testing, you will:

  • Lead, mentor, and develop a team of penetration testers, fostering strong technical depth, hands-on expertise, and continuous skill development across application, network, and cloud domains
  • Own and evolve the penetration testing program, including methodologies, tooling, quality assurance practices, reporting standards, and risk-based prioritization of testing activities
  • Drive delivery of high quality, hands on testing across enterprise applications, APIs, infrastructure, and cloud environments, ensuring assessments are technically rigorous and aligned to real-world exploitability
  • Establish and enforce engineering-centric testing standards, ensuring consistency, reproducibility, and depth across both internal and third-party executed assessments
  • Oversee and coordinate testing performed by external providers, including scoping, execution expectations, and technical validation of results to ensure quality and accuracy
  • Ensure regulator and audit ready outputs, including clear documentation, evidence-based findings, and reporting that ties technical vulnerabilities to business and risk impact
  • Partner with engineering, infrastructure, and architecture teams to drive effective remediation, validate fixes, and improve secure design and development practices
  • Integrate emerging technologies and techniques into the program, including AI/LLM-focused testing approaches and assurance of enterprise AI deployments (e.g., prompt injection, model abuse, data exposure)
  • Track, analyze, and communicate program metrics, including coverage, risk trends, vulnerability recurrence, and remediation performance, providing clear insights to senior leadership
  • Continuously improve program maturity, balancing technical depth with scalability, consistency, and alignment to evolving threats, technologies, and regulatory expectations

What We Value

These skills will help you succeed in this role:

  • Leadership through influence and accountability, with a focus on developing talent and building high-trust teams.
  • Risk-based decision making, prioritizing what matters most in complex, regulated environments.
  • Technical depth with strategic perspective—ability to connect hands-on findings to enterprise risk outcomes.
  • Clear, executive-ready communication tailored to technical and non-technical audiences.
  • Curiosity and continuous learning, especially in emerging areas such as AI/LLM security.
  • Collaboration and partnership across engineering, risk, and business stakeholders.
  • Ownership and bias for action, ensuring issues are driven through remediation and closure.

Education & Preferred Qualifications

  • 8+ years in offensive security with experience in high security/highly regulated environments; 2+ years leading teams preferred.
  • Deep expertise in network and application penetration testing, including enterprise attack paths and complex application ecosystems.
  • Strong knowledge of cloud, containerized environments, and identity-centric architectures.
  • Demonstrated ability to translate findings into actionable, risk-based remediation.
  • Strong stakeholder engagement and executive communication skills.
  • Prior successful experience working with technology owners and business unit leaders to reduce risk
  • Nice to have: experience using AI/LLM tools to perform network and application penetration testing and configuration/security reviews.
  • Education/Certifications (desired, not mandatory): BS/MS in relevant field; OSCP/OSEP/OSCE, GPEN/GXPN, GWAPT, GCPN, PNPT, CREST (CRT, CCT INF, CCT APP, CCRTS, CCRTM) or similar.

InterSources logo

About InterSources

Sourced by ZipRecruiter

In 2007, Our journey began as pioneers in the realm of technology and security. Since then, InterSources Inc. has evolved into a trusted partner, leading the way in Cloud Security, Cybersecurity, PLG Consulting, Digital Transformation, and Professional Services. With a rich history of excellence and a forward-thinking approach, we continue to secure your digital future and drive innovation. Explore our legacy of success and discover the possibilities that lie ahead.

Company size

51 - 200 Employees

Headquarters location

Fremont, CA, US

Year founded

2007

Social media