Principal Penetration Tester jobs in United States
cer-icon
Apply on Employer Site
company-logo

Verizon · 6 hours ago

Principal Penetration Tester

positionCary, North Carolina
timeFull-time
remoteHybrid
senioritySenior Level, Lead/Staff
money$120K/yr - $231K/yr
date6+ years exp

Verizon is a leading telecommunications company that empowers how people live, work, and play. They are seeking a Principal Penetration Tester to join their Cyber Security organization, focusing on protecting assets and information by performing penetration testing on complex applications and infrastructure.

Communications InfrastructureInternetInternet of ThingsMobileTelecommunications
check
Comp. & Benefits
check
H1B Sponsor Likelynote

Responsibilities

Leading and performing full scope penetration testing on complex, high risk web applications, Infrastructure, APIs and Mobile applications
Successfully working complex issues that require the analysis and in-depth evaluation of variable factors
Interpreting broad goals with unknown variables and craft, execute plans to achieve these goals with little to no contemporary “clear and transparent” standards
Developing resolutions that require the frequent use of creativity and out of the box thinking
Configuring and safely utilizing attacker tools, tactics, and procedures for Verizon environments
Developing comprehensive and accurate reports and presentations for both technical and executive audiences
The ability to make collaborative and independent decisions on the impact of an exposure to Verizon
Acting as a SME and guide, advising on security vulnerability impact, ratings and remediation recommendations across the organization as needed
Leading the definition of Pen Test strategy and standards to further enhance the company’s security posture, collaborating with management/exec leadership
Effectively communicating findings and strategy to client stakeholders including technical staff, executive leadership, and legal counsel
Working closely with stakeholders and developers providing risk-appropriate and pragmatic recommendations to correct found vulnerabilities
Translating functional plans into operational processes and guiding execution of the development of scripts, tools, or methodologies to enhance Verizon’s pen testing processes and effectiveness
Driving technical oversight and mentoring junior pen testers on pen test engagements, vulnerability impact and ratings and remediation recommendations
Providing leadership and guidance to advance the offensive capabilities of the team and its subsequent ability to defend the Verizon Enterprise

Qualification

Penetration TestingApplication SecuritySecurity Vulnerability AssessmentEthical Hacking CertificationsSecure Software DevelopmentAPI SecurityNetwork Security TestingUnix/Linux/Mac/WindowsLeadershipCommunication SkillsProblem SolvingContinuous Learning

Required

Bachelor's degree or four or more years of work experience
Six or more years of relevant experience required, demonstrated through one or a combination of work and/or military experience, or specialized training
Experience with application security risk procedures, security patterns, authentication technologies and security attack pathologies

Preferred

A degree in engineering, cyber security or computer science
Application development experience
Knowledge of secure software deployment methodologies, tools, and practices
Certifications such as: GXPN, GPEN, eWPT, GCIH, GWAPT, OSCP, OSWA, OSCE, OSWE
Service Delivery/Governance: ITILv2/3
Deep understanding of OWASP Top 10, OWASP API Top 10, MASVS
Strong knowledge of tools used for api, Infrastructure, web application, mobile, and network security testing, such as Kali Linux, Metasploit, Wireshark, Burp suite, Cobalt Strike, Nessus, Web Inspect, SQLMap
Experience leading small pen test teams, driving process and strategy
Solid understanding of common hosting environments such as containerization platforms (e.g., Docker and Kubernetes) and virtual machines running under hypervisors
An implementation level familiarity with all common classes of modern exploitation
Mastery of Unix/Linux/Mac/Windows operating systems, including bash and Powershell
Programming skills preferred and encouraged, as well as the ability to read and assess applications written multiple languages, such as Python, JAVA, .NET, C#, or others
Experience with system and application security threats and vulnerabilities and secure configuration management techniques, software debugging principles, software design tools, methods, and techniques, software development models (e.g., Waterfall Model, Spiral Model)
Knowledge of secure coding techniques
Knowledge of application security, application security vulnerabilities and exploitation techniques
Some experience with software related information technology (IT) security principles and methods (e.g., modularization, layering, abstraction, data hiding, and simplicity/minimization)
Knowledge of secure software deployment methodologies, tools, and practices
Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth)
Knowledge of security architecture concepts and enterprise architecture reference models
Knowledge in discerning the protection needs (i.e., security controls) of information systems and networks
Strong organization skills and demonstrated ability to manage multiple, often conflicting priorities to successful completion
Be a continuous learner; with a desire to stay current on security trends, tool, technologies and best practices

Benefits

Medical
Dental
Vision
Short and long term disability
Basic life insurance
Supplemental life insurance
AD&D insurance
Identity theft protection
Pet insurance
Group home & auto insurance
Matched 401(k) savings plan
Up to 8 company paid holidays per year
Up to 6 personal days per year
Paid parental leave
Adoption assistance
Tuition assistance
Premium pay such as overtime, shift differential, holiday pay, allowances, etc.
Up to 15 days of vacation per year

Company

Verizon

twittertwittertwitter
Glassdoor3.8
company-logo
Verizon is a broadband and telecommunications company that provides information and entertainment services.
dateFounded in 1983
location
New York, New York, USA
people-size10001+ employees
web-link
https://www.verizon.com

H1B Sponsorship

Verizon has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (7)
2024 (3)
2023 (2)
2022 (6)
2021 (6)
2020 (8)

Funding

Current Stage
Public Company
Total Funding
$34.39B
Key Investors
Maryland Department of Housing and Community DevelopmentU.S. Department of DefenseConnect Maryland
2025-07-30Post Ipo Debt· $2.29B
2024-06-20Grant· $2M
2024-02-26Post Ipo Debt· $1B

Leadership Team

leader-logo
Daniel Schulman
Chief Executive Officer
linkedin
leader-logo
Santiago Tenorio
SVP & CTO
linkedin

Recent News

SlashGear.com
We Finally Know What Caused The Verizon Outage, And It Wasn't What Many Assumed
2026-01-24
The Motley Fool
5 Dividend Stocks Yielding 5% or More to Buy Right Now for Passive Income
2026-01-24
Latest news
Frontier is now part of Verizon: Here are all the deals you can take advantage of now
2026-01-23
Company data provided by crunchbase