Job Posting: Jr. Penetration Tester

Tactical Cyber Employee

Overview

Tactical Cyber is seeking a motivated Junior Penetration Tester to support security assessments across client environments. This role is ideal for individuals who possess strong technical fundamentals, a disciplined approach to problem-solving, and a desire to develop offensive security skills in a professional setting.

You will work alongside experienced operators to identify vulnerabilities, validate security controls, and contribute to clear, actionable reporting for clients.

Core Responsibilities

  • Assist in network, web application, and system security assessments
  • Perform reconnaissance, scanning, and basic enumeration activities
  • Identify and validate common vulnerabilities in client environments
  • Support exploitation efforts under supervision
  • Document findings in a clear and structured format
  • Contribute to internal knowledge sharing and tool development

Minimum Required Skills

Technical Foundations

  • Solid understanding of networking fundamentals (TCP/IP, DNS, HTTP/HTTPS)
  • Working knowledge of Linux (Kali preferred) and Windows environments
  • Familiarity with common ports, services, and system architecture
  • Understanding of core security principles (CIA triad, authentication, authorization)

Tools & Technologies

  • Experience with:
    • Nmap
    • Burp Suite
    • Metasploit (basic usage)
    • Wireshark or similar tools

Web Application Security

  • Understanding of how web applications function
  • Familiarity with common vulnerabilities:
    • SQL Injection
    • Cross-Site Scripting (XSS)
    • Broken authentication
  • Exposure to OWASP Top 10 concepts

Scripting & Automation

  • Basic scripting ability in:
    • Python (preferred)
    • Bash or PowerShell
  • Ability to modify and execute existing scripts
  • Familiarity with automating simple tasks

Professional Skills

  • Analytical mindset with attention to detail
  • Ability to troubleshoot and adapt during assessments
  • Clear written communication and documentation skills
  • Understanding of ethical and legal boundaries in security testing

Day-One Expectations

Candidates should be able to:

  • Conduct and interpret basic network scans
  • Perform introductory web application testing
  • Navigate Linux environments confidently
  • Assist in documenting vulnerabilities and remediation steps

Preferred Qualifications

  • Hands-on lab experience (TryHackMe, Hack The Box, or similar)
  • Entry-level certifications (Security+, eJPT, or equivalent)
  • Exposure to Active Directory environments

Work Environment & Benefits

At Tactical Cyber, we prioritize sustainable performance and professional growth. Our team operates in a collaborative environment that values precision, discipline, and continuous learning.

We offer:

  • Competitive compensation
  • Work-life balance
  • Tuition reimbursement and professional development support
  • Opportunities to work on meaningful, real-world engagements

Apply

If you are ready to develop your skills in a structured, real-world environment, we encourage you to apply and grow with Tactical Cyber.