Senior Penetration Tester (Active Directory)

Kaseya® is the leading provider of complete IT infrastructure and security management solutions for Managed Service Providers (MSPs) and internal IT organizations worldwide powered by AI. Kaseya’s best-in-breed technologies allow organizations to efficiently manage and secure IT to drive sustained business success. Kaseya has achieved sustained, strong double-digit growth over the past several years and is backed by Insight Venture Partners www.insightpartners.com), a leading global private equity firm investing in high-growth technology and software companies that drive transformative change in the industries they serve.

Founded in 2000, Kaseya currently serves customers in over 20 countries across a wide variety of industries and manages over 15 million endpoints worldwide. To learn more about our company and our award-winning solutions, go to www.Kaseya.com and for more information on Kaseya’s culture, please click here: Kaseya Culture.

Kaseya is not your typical company. We are not afraid to tell you exactly who we are and our expectations. We have achieved record levels of success being BOLD, being GRITTY, being ACCOUNTABLE. The thousands of people that succeed at Kaseya are prepared to go above and beyond for the betterment of our customers, and the betterment of their careers and long-term financial wealth. 

At Vonahi Security, work is more than a job - it's a passion: To hack. To tinker. To exploit. To collaborate. To automate. To make an impact. To build the future of automated network penetration testing. Not just to do something better, but to attempt things you've never thought were possible. Are you ready to push the boundaries in this new era of infosec and solve one of the industry’s most challenging problems? If so, let's talk.

Why Join?

• We're pushing the boundaries of technology with automation.
• Our entire company is 100% remote.
• Focus on expanding your knowledge and skills.
• Our company culture is all about teamwork, innovation, and helping each other.
• Flexible working hours, although US business hours are preferred.

Primary Responsibilities

• Contribute to the backend development of our automated pentesting framework to continuously improve efficiency and introduce new automated exploits.
• Collaborate with the penetration testing team on new tools and strategies for expanding the framework.
• Stay updated with the latest and greatest security vulnerabilities and available exploits to incorporate into the platform.
• Document and streamline development best practices and initiatives.
• Use custom and open-source tools to perform and report on exploitation and post-exploitation attacks that were not covered by our automation efforts.
• Identify bugs and room for improvement relating to the framework and other custom tools for our automation team.
• Contribute to internal documentation of (post-)exploitation attacks that can be performed by our pentesters.
• Collaborate with our automation team by suggesting and documenting attacker vectors not yet covered by the framework.
• Occasionally write scripts in Ruby, Python, and/or Bash to automate manual testing routines and/or specific attacks (e.g., testing for and exploiting default credentials in common web apps).
• Recommend new procedures, policies, and tools to streamline our pentest QA process and eliminate repetitive, manual tasks.

Qualifications

• Must be comfortable performing post-exploitation in Active Directory and enterprise environments with no assistance.
• Must possess and demonstrate experience with object-oriented programming (OOP).
• Experience with MVC frameworks, especially Ruby on Rails, is a huge plus.
• Must possess knowledge in either Ruby or Python.
• Must be able to use Linux without any assistance.
• Must be familiar with standard penetration testing tools (e.g. Nmap, Metasploit, etc.).
• Ability to adapt and learn new creative ways to solve inefficiencies through automation.
• Understanding of networking protocols and terminology.
• Passion for developing new tools and scripts to solve problems.
• Excellent teamwork and collaboration skills.

We're a 100% remote cybersecurity company that developed vPenTest, a SaaS platform that automates network penetration testing and delivers continuous testing at a fraction of the cost of an outsourced consultant. The future of offensive cybersecurity consulting services through automation starts here. We are headquartered in Atlanta, GA. Visit www.vonahi.io to learn more.

At Vonahi Security, we work with organizations of all sizes to deliver real business value by:

• Validating security vulnerabilities with the industry’s golden standard: network penetration testing.
• Making offensive security more affordable with automation
• Offering internal and external network penetration testing on a continuous basis without all the headaches, just a few clicks.

We are a minority-owned U.S. company. All qualified applicants will receive consideration for employment without regard to age, race, color, religion, sex, sexual orientation, gender identity, national origin, or veteran status. We believe that everyone deserves to be supported and encouraged to be unique individuals. We embrace different ideas and perspectives. Our company was built with passion, creativity, and a diverse team from all around the world and we take great pride in creating a culture and work environment that is welcoming and inclusive for all, driven by behavior that shows empathy, respect, and care for others. Any form of disrespect or harassment will never be welcomed or tolerated here.

Join the Kaseya growth rocket ship and see how we are #ChangingLives !

Additional information
Kaseya provides equal employment opportunity to all employees and applicants without regard to race, religion, age, ancestry, gender, sex, sexual orientation, national origin, citizenship status, physical or mental disability, veteran status, marital status, or any other characteristic protected by applicable law.