Netragard is seeking a junior penetration tester who can support senior testers, learn quickly, and grow into independently running advanced assessments. The ideal candidate is curious, detail-oriented, and comfortable working in a fast-paced, client-facing consulting environment.Role overviewNetragard’s junior penetration testers help deliver high-quality security assessments across external and internal infrastructure, web applications, APIs, and cloud environments under the guidance of senior testers. You will contribute to engagements that emphasis manual, research-driven techniques over scanner-only approaches.Key responsibilities- Perform supervised penetration testing of networks, applications, and cloud environments using a mix of commercial, open-source, and Netragard-native tooling.- Execute reconnaissance, enumeration, exploitation, basic privilege escalation, and lateral movement steps following internal procedures and senior tester direction.- Identify, document, and validate security vulnerabilities, misconfigurations, and insecure patterns, focusing on clear risk articulation and reproducible steps.- Draft portions of client deliverables, including technical findings, proof-of-concept details, and remediation recommendations, to be reviewed by senior staff.- Participate in debrief calls and internal review sessions, capturing client questions, improvement areas, and lessons learned for future engagements.- Contribute to internal research, lab projects, and methodology improvements.- Maintain strong operational security, protect client data carefully, and adhere to Netragard policies and legal/ethical guidelines at all times.Required qualifications- 1–2 years of hands-on technical experience in information security, system administration, development, or a closely related field (professional, lab, or project-based).- Solid understanding of TCP/IP networking, common services (HTTP/S, DNS, SMTP, VPN, etc.), and typical enterprise architectures.- Familiarity with common attack classes such as injection flaws, authentication/authorization issues, insecure configurations, and basic Active Directory weaknesses.- Practical exposure to penetration testing tools and frameworks (for example Burp Suite, Nmap, Metasploit, password crackers, and common reconnaissance utilities).- Ability to write clear, concise technical notes and translate them into structured report content with guidance.- Strong problem-solving mindset, willingness to ask questions, and comfort receiving and integrating feedback from senior testers.Preferred qualifications- Prior experience supporting penetration testing, red team, CTF, bug bounty, or security research activities (professional, academic, or self-directed).- Exposure to at least one scripting or programming language (such as Python, PowerShell, or Bash) for task automation or simple tooling.- Familiarity with one or more cloud platforms (AWS, Azure, GCP) and their common security controls and misconfigurations.- Progress toward or possession of relevant certifications such as eJPT, CompTIA Pentest+, eWPT, or similar junior-level penetration testing credentials.Benefits- Salary $60,000 – $75,000 commensurate on experience- Health, dental, vision Insurance- Holidays and paid time off- 401KAdditional Information- Boston/Remote- Hours: 9AM – 5PM Eastern Time- Applicants must be currently authorized to work in the United States on a full-time basis. We are unable to provide visa sponsorship at this time.NB: No recruitment agencies.