Overview: Cyber Defense Technologies (CDT) is seeking a Junior Penetration Tester to support cybersecurity operations across multiple enterprise and government environments. The selected candidate will assist senior penetration testers and security engineers in identifying vulnerabilities across networks, systems, and applications through authorized penetration testing and vulnerability assessment activities.
This role provides an opportunity to work alongside experienced cybersecurity professionals performing offensive security assessments, vulnerability validation, and adversary emulation activities. The Junior Penetration Tester will participate in engagements that help organizations strengthen their security posture by identifying exploitable weaknesses and providing actionable remediation recommendations.
The ideal candidate is passionate about cybersecurity, eager to learn advanced penetration testing techniques, and comfortable working in both Linux and Windows environments while leveraging industry-standard tools and frameworks.

Clearance Requirements: Candidates must be a U.S. Citizen and able to pass a 5-year background check.

Responsibilities:

• Assist senior penetration testers with internal and external penetration testing engagements against enterprise systems and networks
• Conduct web application penetration testing using industry-standard tools and methodologies
• Perform vulnerability identification, validation, and risk analysis to determine exploitability and impact
• Support network reconnaissance, enumeration, and exploitation activities during authorized testing engagements
• Assist in conducting wireless security assessments and password security testing
• Document testing procedures, findings, and remediation recommendations for inclusion in professional penetration testing reports
• Utilize tools such as Nmap, Burp Suite, Metasploit, Nessus, and Wireshark during testing activities
• Participate in security research and exploit development labs to improve testing methodologies
• Assist with post-exploitation analysis and privilege escalation testing
• Support incident response investigations when malicious activity or compromise is suspected
• Maintain familiarity with common attack frameworks such as MITRE ATT&CK, OWASP Top 10, and PTES
• Collaborate with security engineers and system administrators to validate remediation efforts and conduct retesting

Required Qualifications:

• 0–2 years of cybersecurity or IT security experience related to vulnerability assessment, security operations, or penetration testing
• Foundational knowledge of penetration testing methodologies and attack techniques
• Experience working in Linux environments (Kali Linux, Ubuntu, or similar distributions)
• Familiarity with Windows environments and Active Directory fundamentals
• Understanding of network protocols (TCP/IP, DNS, HTTP, SMB, LDAP)
• Basic scripting ability using Python, Bash, or PowerShell
• Familiarity with common security testing tools such as:
  • Nmap, Burp Suite Community or Professional, Metasploit Framework, Wireshark, Nessus / OpenVAS, SQLmap, Nikto / OWASP Zap, Hydra, Gobuster / Dirbuster, BloodHound
• Basic understanding of web application vulnerabilities such as SQL Injection, XSS, authentication bypass, and misconfigurations
• Strong written communication skills for technical documentation and report writing

Preferred Qualifications:
Candidates possessing or actively pursuing one or more of the following entry-level penetration testing or cybersecurity certifications are strongly encouraged to apply:
1.      TCM Security

• PNPT – Practical Network Penetration Tester
• PJPT – Practical Junior Penetration Tester
• PWPT – Practical Web Penetration Tester

2.      INE / eLearnSecurity

• • eJPT – eLearnSecurity Junior Penetration Tester
  • eWPT – eLearnSecurity Web Application Penetration Tester

3.      CompTIA

• Security+
• PenTest+
• CySA+

Desired Skills

• Experience participating in Capture-the-Flag (CTF) competitions or security labs (TryHackMe, HackTheBox, PortSwigger Labs, etc.)
• Familiarity with Active Directory attack fundamentals
• Experience using Kali Linux penetration testing toolsets
• Understanding of basic privilege escalation techniques on Linux and Windows systems
• Experience working in team-based cybersecurity environments
• Work Environment
• Remote or hybrid work environment depending on program requirements
• Collaboration with CDT security engineers, red team members, and incident response personnel
• Opportunity to participate in advanced penetration testing engagements and cyber research initiatives

Why Join Cyber Defense Technologies?
At CDT, we offer a collaborative and inclusive work environment where your expertise can help shape the future of cybersecurity and engineering solutions.

Compensation and Benefits:

• Competitive salary based on experience.
• Comprehensive benefits package, including health, dental, and retirement plans.
• Opportunities for professional development and career advancement.

CDT is committed to hiring and retaining a diverse workforce. We are an Equal Opportunity employer making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class.

Apply Now:
If you are a proactive Penetration Tester and thrive in dynamic environments, we encourage you to apply and join the CDT team!