A

Associate, Cybersecurity, Penetration Tester

Ankura Consulting Group
Full-time
Remote
United States

Ankura is a team of excellence founded on innovation and growth.

Practice Overview

Ankura’s well regarded and fast growing Cybersecurity Practice offers a full-service suite of information security and privacy solutions for clients, regardless of industry or size. We provide proactive preparedness, incident response, cyber resilience, and managed advisory services customized to clients’ requirements. The Cyber team is composed of leaders from the intelligence community, including former FBI and CIA personnel, private security firms, and pioneering technology companies. Our experts assess cyber risk and readiness, test and harden clients’ infrastructure, and respond instantly and decisively when threats arise. We regularly advise boards of directors, members of the C-suite, general counsel, outside counsel, IT leaders, and other stakeholders at all stages of any cyber incident.

Β 

Our cyber technologies division, part of our cyber risk practice, is looking for a hands-on penetration tester who will support our clients identify vulnerabilities in external and internal facing infrastructure and recommend remediation strategies to counter threat actors proactively.

Β 

Role Overview:

We are looking for a hands-on penetration tester who will support our clients identify vulnerabilities in external and internal facing infrastructure and recommend remediation strategies to counter threat actors proactively.

This role can be based anywhere in the United States.
Β 

Responsibilities:

  • Perform various types of penetration testing, including:

    • Internal network penetration testing

    • External network penetration testing

    • Web application penetration testing

    • Wireless network penetration testing

    • API penetration testing

    • Physical penetration testing

  • Conduct social engineering assessments, including phishing, vishing, and in-person techniques.

  • Identify and exploit vulnerabilities to assess their impact on the target systems.

  • Develop and execute test plans and scenarios based on client requirements.

  • Utilize industry-standard tools and techniques to conduct thorough security assessments.

  • Prepare detailed reports outlining findings, risks, and remediation steps.

  • Present findings to clients and lead some meetings.

  • Work collaboratively with clients to understand their security needs and provide expert guidance.

  • Stay updated with the latest cybersecurity trends, threats, and technologies.

  • Travel to client locations as necessary (approximately 25%)

Qualifications:

  • Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent work experience.

  • 1-3 years of experience in penetration testing, vulnerability assessment, or related field.

  • Proficiency with penetration testing tools such as: Nessus, Burp Suite, Nmap, Metasploit, Wireshark, Aircrack-ng suite, Hashcat. Kali Linux

  • Understanding of network protocols, operating systems, and security technologies.

  • Familiarity with common web application vulnerabilities (e.g., OWASP Top 10).

  • Strong analytical and problem-solving skills.

  • Excellent verbal and written communication skills.

  • Ability to work independently and as part of a team.

  • Willingness to perform physical penetration testing and social engineering.

  • Consulting experience is a plus.

  • Comfort with presenting findings to clients and leading some meetings.

  • Relevant certifications (e.g., OSCP, CEH, GPEN) are a plus.

Preferred Qualifications:

  • Experience with cloud security assessments (AWS, Azure, GCP).

  • Knowledge of secure coding practices and code review.

  • Understanding of regulatory compliance standards (e.g., PCI-DSS, HIPAA).

  • Experience with mobile testing is a plus, but not required.

  • Experience with hardware testing is a plus, but not required.

Training and Mentorship:

At Ankura, we believe in nurturing talent. The right passionate entry-level candidate will be trained and mentored by our experienced team. We are committed to providing you with the knowledge and skills needed to excel in your role and grow within our organization.

For individuals assigned and/or hired to work in California, Colorado, or New York, Ankura is required to include a reasonable estimate of the compensation range for this role. This compensation range is specific to the said markets and considers a broad range of factors including but not limited to skill sets, experience and training, licensure and certifications, and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled.Β  The range does not include additional benefits outside of salary. At Ankura, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each role. A reasonable estimate of the current base pay range is between $50,000 to $120,000; this range is not a promise of a particular wage.

#LI-Remote
#LI-NT1

*

Ankura is an Affirmative Action and Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against based on disability. Equal Employment Opportunity Posters, if you have a disability and believe you need a reasonable accommodation to search for a job opening, submit an online application, or participate in an interview/assessment, please email accommodations@ankura.com or call toll-free +1.312-583-2122. This email and phone number are created exclusively to assist disabled job seekers whose disability prevents them from being able to apply online. Only messages left for this purpose will be returned. Messages left for other purposes, such as following up on an application or technical issues unrelated to a disability, will not receive a response.