The Role
This is an entry-level role for aspiring penetration testers who have a solid foundation in IT/security and are eager to learn from an amazing group of offensive security professionals. Associate Testers work under the guidance of more experienced team members to deliver network and cloud assessments. The focus at this stage is on building core skills, learning methodologies, tools, and reporting standards of the team.
Associates utilize their system administration skills support for the team with vulnerability scanning, configuration assessments, and testing infrastructure improvements while developing the skills necessary to become a penetration tester.
Skills that align to the role:
· Understanding of IP addressing, subnetting, gateways, DNS, and DHCP
· Basic knowledge of firewalls and how to allow/deny traffic using ports and protocols (TCP/UDP)
· Understanding of vulnerability and configuration management.
· Configuring and troubleshooting VPN clients (IPSec, SSL VPN)
· Navigating cloud portals, launching virtual machines, and assigning security groups
· Understanding basic IAM concepts like users, roles, and policies
· Configuring and troubleshooting internal and external DNS zones
· Managing S3 buckets (AWS) or Blob Storage (Azure)
· Understanding access permissions and basic data lifecycle policies
· Using cloud-native tools (e.g., CloudWatch, Azure Monitor) to track uptime, performance, and security events
· Basic Scripting for Automation
Requirements
Typical Experience: An Associate level pen tester typically has 1–3 years of general IT and/or cyber security experience.
Technical Skills: Practical knowledge of networking fundamentals and configuration and vulnerability management. Able to run port scans and network mapping (using tools like Nmap) and identify simple misconfigurations. Familiar with fundamental protocols (TCP/IP, DNS, etc.) and aware of common network attack vectors (e.g. open ports, default credentials).
Soft Skills: This position is eager to learn and receptive to feedback. Capable of documenting findings and drafting portions of reports, though these will be reviewed by seniors. Beginning to develop communication skills – for example, can explain a discovered vulnerability clearly to the team and is learning to tailor explanations to non-technical audiences. Demonstrates professionalism, ethical conduct, and knows when to ask questions or seek help. Teamwork is important; junior members are expected to collaborate and take direction well.
Certifications (Optional): While hands-on ability is more important than certificates, many in this role work toward certifications to validate their skills. While certifications can bolster an associate’s credibility, the ability to demonstrate practical skills is the primary requirement.
Benefits
About Evolve Security
Evolve Security is a next generation cybersecurity services firm headquartered in Chicago, IL powered by the Darwin Attack® Platform. We are dedicated to improving our client’s security posture by providing Attack Surface Management (ASM), Vulnerability Management as a Service (VMaaS), Continuous Penetration Testing (CPT) and cyber advisory.
In addition to our professional cybersecurity service offerings, Evolve Security offers a cybersecurity bootcamp, “Evolve Academy”, currently ranked the #1 cybersecurity bootcamp in the world. The Cybersecurity Bootcamp in Chicago provides immersive training, giving students the concrete and practical skills, needed on the job. Students gain real work experience through live security assessment work that they perform on not-for-profit companies.
We are passionate about directly improving our customers’ security posture, and we proudly train others to help meet the need for qualified cybersecurity talent.
Why Join Evolve Security?
...Description The John C. Danforth Center on Religion and Politics seeks applications from junior scholars and recent Ph.D. graduates for up to two postdoctoral fellowships in residence at Washington University in St. Louis. The appointment is for one year, renewable...
...checking for vulnerabilities, or helping protect our Microsoft security tools. If youre curious, love solving problems, and want to grow... ...analytical skills; escalate complex investigations to senior analysts. Stay informed about cybersecurity threats and best practices...
...Position Overview: The primary responsibility of the Lifeguard is to monitor activities of guests in aquatic areas of the property, including the pool, jacuzzi, and pool deck, to ensure a safe environment, avoid/prevent injuries, and provide emergency assistance as...
...of Smart Building Solutions across the nation. A full suite of integrated solutions and services help building owners and managers... ...as necessary. In addition to the responsibilities below, the Systems Integrator executes controls projects with an emphasis on delivering...
JOB SUMMARYSysco has immediate job openings for dependable Class C Special Delivery Truck Drivers to safely and efficiently operate a truck, and manually unload/deliver various products (meats, produce, frozen foods, groceries, dry goods, supplies, etc.) to customer locations...