NetSPI · 2 weeks ago
Senior Security Consultant (Cloud Penetration Tester - AWS)
United States
Full-time
Remote
Mid, Senior Level
3+ years expNetSPI is a leader in Penetration Testing as a Service (PTaaS) and is seeking an experienced Senior Security Consultant specializing in Cloud Penetration Testing. The role involves executing cloud penetration tests, developing innovative testing methodologies, and collaborating with clients to enhance their security posture.
ComputerCyber SecurityInformation TechnologyNetwork SecurityService Industry
Responsibilities
Execute cloud penetration tests against AWS environments
Develop innovative TTPs in support of Cloud testing
Create attack narratives and findings-based penetration test reports for clients
Collaborate with clients to create remediation strategies that will help improve their security posture
Act as a resource for internal team members as it relates to in-depth technical questions or best practices in Cloud
Assist in QA review of Cloud engagements
Help define and document internal processes and TTPs
Contribute to the information security community through the development of tools, presentations, white papers, and blogs
Qualification
Required
Bachelor's degree or higher with a concentration in computer science, engineering, math, IT, or equivalent experience
3 - 5 years experience performing offensive/attack-oriented penetration tests against AWS environments and External/Internal networks
Recognized Penetration Testing specific qualifications such as GXPN, OSCP, OSCE, or similar certifications
Strong communication, presentation, and writing skills
Experience performing security focused cloud configuration reviews
Experience with offensive toolkits for both cloud and network penetration testing
Demonstrable knowledge in the following areas: Exploiting security misconfigurations for core cloud services such as Compute, Storage, Databases, Networking, Kubernetes, and other PAAS services
IAM security fundamentals and how to leverage excessive permissions for lateral movement and privilege escalation within the cloud
Testing external cloud attack surfaces
Testing internal cloud attack surfaces
Preferred
Programming experience in one or more of the following languages: Python, PowerShell, C#, Go
Experience researching new cloud service offerings with the goal of identifying misconfigurations and vulnerabilities
Web Application pentesting experience
Company
NetSPI
NetSPI is a cybersecurity company that offers enterprise security testing and attack surface management services.
501-1000 employees
H1B Sponsorship
NetSPI has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (1)
2024 (3)
2023 (1)
2022 (2)
2021 (5)
2020 (5)
Funding
Current Stage
Late StageTotal Funding
$500MKey Investors
Kohlberg Kravis Roberts
2022-10-05Private Equity· $410M
2021-05-12Private Equity· $90M
2017-04-21Private Equity
Leadership Team
Aaron Shilts
President and CEO
Alvaro Warden
Vice President, WW Channels @ NetSPI
Recent News
2026-01-12
2025-11-24
Company data provided by crunchbase