Penetration Tester

Company Overview

LevelUp is a specialized BPO company that partners with technology companies across the US, UK, Europe, and Canada to provide tailored outsourcing solutions. For over seven years, we've built a reputation for delivering high-quality operational and back-office support, helping our clients scale efficiently. Our team consists of highly skilled and passionate professionals who are dedicated to providing exceptional service, technical expertise, and seamless support to our clients.

Position Overview

We're looking for a Penetration Tester with strong technical experience and a valid OSCP certification. CREST certification is highly preferred. You will be responsible for identifying, testing, and documenting security vulnerabilities across infrastructure, applications, and networks. This is a fully remote role supporting one of our global cybersecurity clients.

• Plan and execute penetration tests on web applications, APIs, networks, and infrastructure.
• Identify vulnerabilities and misconfigurations through manual and automated testing.
• Document findings clearly with actionable recommendations.
• Collaborate with client security teams to remediate and verify fixes.
• Provide technical input in threat modeling, risk assessments, and security reviews.
• Stay updated on the latest security threats, exploits, and tools.

• 3+ years of hands-on experience in penetration testing.
• Valid OSCP certification (CREST is a strong plus).
• Strong understanding of OWASP Top 10, common attack vectors, and exploitation techniques.
• Proficiency in using tools such as Burp Suite, Nmap, Metasploit, and custom scripts.
• Solid knowledge of Linux and Windows environments.
• Familiarity with reporting standards and documentation best practices.
• Ability to work independently and communicate technical findings effectively to both technical and non-technical stakeholders.

• CREST CRT or CCT certification.
• Experience with Red Team engagements or social engineering testing.
• Familiarity with scripting in Python or Bash.

• The client is a global cybersecurity firm with a high-performing engineering team.
• Flexible setup – choose between independent contractor or full-time employment.
• Competitive salary and long-term engagement.
• Fully remote role.
• Collaborative, fast-paced environment with high-growth potential.