Infrastructure Penetration Tester Freelancer (PRIPT1125)

PRIORITY Quality Consultants is seeking a highly skilled Penetration Tester to join our dynamic cybersecurity team. In this role, you will assess and strengthen the security of client infrastructure environments, including internal networks, external-facing systems, wireless networks, Active Directory, hybrid/cloud-connected environments, and related components.

Position Overview

You will perform targeted penetration tests against client infrastructures to identify and demonstrate security weaknesses. This includes the full engagement lifecycle from reconnaissance and enumeration through exploitation, lateral movement, and post-exploitation, followed by clear and actionable remediation guidance for the client.

The ideal candidate has hands-on experience with infrastructure penetration testing, Active Directory, wireless networks, and traditional network infrastructure. Success in this role requires a methodical approach, the ability to think like an attacker, strong reporting skills, and comfort working across on-premise, hybrid, and cloud-connected environments.

Key Responsibilities

• Perform comprehensive penetration tests and vulnerability assessments across internal, external, and wireless infrastructures in on-premise, hybrid, and cloud environments.
• Identifying and exploiting vulnerabilities and misconfigurations in networks, systems, and Active Directory.
• Use a structured methodology, combining reconnaissance, manual testing, and selective automation to gain meaningful visibility into client environments.
• Complete assessments within agreed timeframes and in alignment with our internal methodology and quality standards.
• Produce professional penetration test reports with clear evidence, CVSS scoring, and MITRE ATT&CK mapping for both technical and executive audiences.
• Collaborate with client IT and security teams to prioritize and address identified vulnerabilities.
• Stay up to date with emerging threats, zero-day vulnerabilities, and infrastructure attack vectors.

Requirements

• At least 2 years of hands-on experience in infrastructure vulnerability assessment and penetration testing.
• Ability to travel to client sites for engagements.
• Strong understanding of network fundamentals (TCP/IP, OSI model), Windows and Linux environments, and common enterprise infrastructure (firewalls, VPNs, Active Directory).
• Proficient with open-source and commercial security tools (e.g., Nmap, Kali Linux, Nessus, Burp Suite, etc.).
• Strong analytical and problem-solving mindset, with the ability to think like an attacker.
• Excellent communication skills, capable of translating technical findings into clear, actionable guidance for both technical and non-technical audiences.
• Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or a related field.
• Relevant certifications such as OSCP, CPTS, CRTP or equivalent are highly appreciated.

Desired Skills

• Experience with Python, Bash, C#, or other scripting/programming languages used for automation or custom tooling during engagements.
• Familiarity with infrastructure compliance frameworks (e.g., NIST, ISO 27001, CIS Controls).
• Experience with cloud infrastructure testing (AWS, Azure, GCP).
• Ability to work independently and manage multiple client engagements with professionalism and precision.

Benefits

• Flexible collaboration: Work remotely or on-site, to manage your schedule in line with project needs.
• Professional development: Access to occasional training or feedback sessions to support your growth.
• Supportive environment: Clear communication, respect for your time, and a focus on effective collaboration.
• Fair compensation: Competitive freelance rates based on your contribution and expertise.