×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity

Principal Penetration Tester

Job in Johnston, Providence County, Rhode Island, 02919, USA
Listing for: Citizens Bank
Full Time position
Listed on 2025-12-01
Job specializations:
  • IT/Tech
    Cybersecurity
  • Engineering
    Cybersecurity
Salary/Wage Range or Industry Benchmark: 150000 - 170000 USD Yearly USD 150000.00 170000.00 YEAR
Job Description & How to Apply Below

Description Principal Penetration Tester

Locations: This role will require a hybrid work schedule in one of our primary organizational hubs including:
Johnston, RI - Pittsburgh, PA - Phoenix, AZ - Westwood or Medford, MA - Plano, TX - Iselin, NJ - Franklin, TN

Position Overview

At our organization, we are committed to innovation and excellence. As part of our team, you’ll have the opportunity to shape a rewarding career filled with impactful challenges. The Principal Penetration Tester will play a critical role in building and shaping our newly formed penetration testing team, bringing deep technical expertise and a collaborative mindset to establish a world-class program. This role focuses on hands‑on penetration testing across diverse environments, including cloud (AWS, Azure, GCP), applications, networks, and endpoints, while contributing to the strategic development of the team’s methodologies, tools, and processes.

This position requires exceptional technical aptitude, a passion for identifying and exploiting vulnerabilities, and the ability to work closely with cross‑functional teams to enhance the organization’s security posture. The Principal Penetration Tester will deliver detailed findings and actionable recommendations, maintaining clear communication with technical teams, leadership, and compliance stakeholders.

Key Responsibilities

Penetration Testing Execution:

  • Conduct advanced penetration tests across cloud environments (AWS, Azure, GCP), web and mobile applications, APIs, networks, and endpoints to identify vulnerabilities and misconfigurations.
  • Develop and execute custom exploits, scripts, and attack scenarios to simulate real-world threats.

Team Building and Development:

  • Collaborate with leadership to build and shape the new penetration testing team, defining methodologies, workflows, and standards.
  • Mentor junior testers, fostering a culture of technical excellence, curiosity, and continuous learning.

Technical Expertise:

  • Maintain and enhance a penetration testing toolkit, including custom tools, scripts (Go, Python, Bash), and industry‑standard platforms (e.g., Burp Suite, Nmap).
  • Stay current with emerging vulnerabilities, exploits, and attack techniques to ensure cutting‑edge testing practices.

Reporting and

Collaboration:

  • Produce detailed, high‑quality reports with clear findings, risk assessments, and remediation recommendations for technical and non‑technical audiences.
  • Partner with application development, infrastructure, and security operations teams to prioritize and address vulnerabilities.
  • Contribute to metrics and KPIs to demonstrate the impact of the penetration testing program.

Process Improvement:

  • Establish repeatable, scalable testing processes aligned with frameworks like OWASP, NIST, PTES, and CVSS.
  • Drive automation initiatives to enhance the efficiency and coverage of penetration testing activities.
Required Experience and Skills
  • 10+ years of cybersecurity experience, with at least 6 focused on penetration testing across diverse environments.
  • Proven expertise in testing cloud platforms (AWS, Azure, GCP), web/mobile applications, APIs, and network infrastructure.
  • Advanced technical skills in scripting (Python, Bash, Power Shell) and hands‑on use of tools like Burp Suite, Metasploit, Nmap, and Nessus.
  • Experience contributing to or building a penetration testing program, including defining methodologies and workflows.
  • Strong understanding of vulnerability management processes and frameworks (e.g., OWASP, NIST, CVSS, CWE).
  • Excellent documentation skills, with the ability to produce clear, actionable reports for technical and executive audiences.
  • Superior communication skills to collaborate with cross‑functional teams and present findings to stakeholders.
  • Demonstrated ability to mentor and guide junior team members.
  • Familiarity with secure development practices and Dev Sec Ops  principles is a plus.
Education and Certifications
  • A bachelor’s degree in Computer Science, Cybersecurity, or a related field.
  • Preferred

    Certifications:

    OSCP, OSCE, OSEP, GPEN, GWAPT, CEH, or equivalent.
Pay Transparency

The salary range for this position is $150,000-$170,000 per year plus an opportunity to earn an…

To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search