🤖 15+ AI Agents working for you. Find jobs, score and update resumes, cover letter, interview questions, missing keywords, and lots more.
Cookies & analytics consent
We serve candidates globally, so we only activate Google Tag Manager and other analytics after you opt in. This keeps us aligned with GDPR/UK DPA, ePrivacy, LGPD, and similar rules. Essential features still run without analytics cookies.
Read how we use data in our Privacy Policy and Terms of Service.
🤖 15+ AI Agents working for you. Find jobs, score and update resumes, cover letter, interview questions, missing keywords, and lots more.
NetSPI • United States
Salary: 500 compa
Role & seniority: Senior/experienced Cloud Penetration Tester
Cloud: Google Cloud Platform (GCP); cloud configuration reviews; IAM security
Offense: offensive toolkits for cloud and network pentesting; custom tools
Languages (preferred): Python, PowerShell, C#, Go
Certifications: GXPN, OSCP, OSCE or similar
Execute cloud penetration tests against GCP environments
Develop innovative TTPs for cloud testing and produce findings-based reports
Collaborate with clients on remediation strategies; contribute to internal QA and process documentation
3–5 years in offensive/attack-oriented pentesting of GCP and networks
Recognized pentesting qualifications (GXPN/OSCP/OSCE or equivalent)
Strong communication, presentation, and writing skills
Experience with security-focused cloud configuration reviews
Proficiency with cloud/offensive toolkits; knowledge of misconfigurations in core cloud services (Compute, Storage, Databases, Networking, Kubernetes, PAAS)
IAM security fundamentals and cloud lateral movement/privilege escalation concepts
Experience testing external and internal cloud attack surfaces
Web application pentesting experience
Programming experience in Python, PowerShell, C#, or Go
Ability to research new cloud services for misconfigurations and vulnerabilities
Location & work type: Not specified in the provided information
NetSPI® pioneered Penetration Testing as a Service (PTaaS) and leads the industry in modern pentesting. Combining world-class security professionals with AI and automation, NetSPI delivers clarity, speed, and scale across 50+ pentest types, attack surface management, and vulnerability prioritization. The NetSPI platform streamlines workflows and accelerates remediation, enabling our experts to focus on deep dive testing that uncovers vulnerabilities others miss. Trusted by the top 10 U.S. banks and Fortune 500 companies worldwide, NetSPI has been driving security innovation since 2001. NetSPI is on an exciting growth journey as we disrupt and improve the proactive security market. We are looking for individuals with a collaborative, innovative, and customer-first mindset to join our team. Learn more about our award-winning workplace culture and get to know our A-Team at www.netspi.com/careers. We are seeking an experienced professional with demonstrated technical depth and breadth in Cloud Penetration Testing as well as the soft skills to effectively communicate with executive and technical teams. In this role, you'll have the ability to work alongside a world-class team using top-tier custom tools. Applicants are expected to leverage strong problem-solving skills, as well as lead, collaborate, and innovate to deliver high-quality exercises and exceptional experiences for our customers.
Programming experience in one or more of the following languages: Python, PowerShell, C#, Go. Experience researching new cloud service offerings with the goal of identifying misconfigurations and vulnerabilities. Web Application pentesting experience. We are an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status or any other characteristic protected by law.
Equal Opportunity Employer
This employer is required to notify all applicants of their rights pursuant to federal employment laws. For further information, please review the Know Your Rights notice from the Department of Labor.