The Role
This is an entry-level role for aspiring penetration testers who have a solid foundation in IT/security and are eager to learn from an amazing group of offensive security professionals. Associate Testers work under the guidance of more experienced team members to deliver network and cloud assessments. The focus at this stage is on building core skills, learning methodologies, tools, and reporting standards of the team.
Associates utilize their system administration skills support for the team with vulnerability scanning, configuration assessments, and testing infrastructure improvements while developing the skills necessary to become a penetration tester.
Skills that align to the role:
· Understanding of IP addressing, subnetting, gateways, DNS, and DHCP
· Basic knowledge of firewalls and how to allow/deny traffic using ports and protocols (TCP/UDP)
· Understanding of vulnerability and configuration management.
· Configuring and troubleshooting VPN clients (IPSec, SSL VPN)
· Navigating cloud portals, launching virtual machines, and assigning security groups
· Understanding basic IAM concepts like users, roles, and policies
· Configuring and troubleshooting internal and external DNS zones
· Managing S3 buckets (AWS) or Blob Storage (Azure)
· Understanding access permissions and basic data lifecycle policies
· Using cloud-native tools (e.g., CloudWatch, Azure Monitor) to track uptime, performance, and security events
· Basic Scripting for Automation
Requirements
Typical Experience: An Associate level pen tester typically has 1–3 years of general IT and/or cyber security experience.
Technical Skills: Practical knowledge of networking fundamentals and configuration and vulnerability management. Able to run port scans and network mapping (using tools like Nmap) and identify simple misconfigurations. Familiar with fundamental protocols (TCP/IP, DNS, etc.) and aware of common network attack vectors (e.g. open ports, default credentials).
Soft Skills: This position is eager to learn and receptive to feedback. Capable of documenting findings and drafting portions of reports, though these will be reviewed by seniors. Beginning to develop communication skills – for example, can explain a discovered vulnerability clearly to the team and is learning to tailor explanations to non-technical audiences. Demonstrates professionalism, ethical conduct, and knows when to ask questions or seek help. Teamwork is important; junior members are expected to collaborate and take direction well.
Certifications (Optional): While hands-on ability is more important than certificates, many in this role work toward certifications to validate their skills. While certifications can bolster an associate’s credibility, the ability to demonstrate practical skills is the primary requirement.
Benefits
About Evolve Security
Evolve Security is a next generation cybersecurity services firm headquartered in Chicago, IL powered by the Darwin Attack® Platform. We are dedicated to improving our client’s security posture by providing Attack Surface Management (ASM), Vulnerability Management as a Service (VMaaS), Continuous Penetration Testing (CPT) and cyber advisory.
In addition to our professional cybersecurity service offerings, Evolve Security offers a cybersecurity bootcamp, “Evolve Academy”, currently ranked the #1 cybersecurity bootcamp in the world. The Cybersecurity Bootcamp in Chicago provides immersive training, giving students the concrete and practical skills, needed on the job. Students gain real work experience through live security assessment work that they perform on not-for-profit companies.
We are passionate about directly improving our customers’ security posture, and we proudly train others to help meet the need for qualified cybersecurity talent.
Why Join Evolve Security?
...Proficiency in automation and scripting (Python, Ansible, REST API, JSON, YAML)~ Familiarity with firewalls, load balancers (F5, Citrix ADC), and security integrations within ACI ~ Hands-on experience with Cisco Nexus switches (9000 series), UCS, and data center infrastructure...
...Immediate need Location: Sussex, DE area - IN-PERSON Overview Back to Basics Learning Dynamics is looking for Spanish interpreters in the Wilmington, DE area. As a member of our network of Independently Contracted Interpreters, you will be responsible for...
...Engineering Manager to lead a verification and validation team thats evaluating the safety... ...teams, software tool teams, test operators, systems engineers, proving ground operators, and... ..., Robotics, Electrical, Mechanical, Computer Science, or Systems Engineering ~7+ years...
IMMEDIATELY HIRING Warehouse Order Selectors Hiring immediately Industry-leading total rewards package. On-the-job training with career growth opportunities. No college degree or previous warehouse experience required! Overtime opportunities. JOB SUMMARY...
...improve your writing, and dream of becoming a writer who can confidently say their content brings in customers? Then read on this freelance position may be right for you! About the position Mint Studios is a content marketing agency based in the UK and US that...