Senior OT Penetration Tester

Posted 6 Hours Ago
Be an Early Applicant
Hiring Remotely in United States
Remote
140K-140K Annually
Senior level
Security • Cybersecurity
Join a mission that can save the world.
The Role
Lead advanced vulnerability assessments, penetration tests, and adversary emulation in ICS/OT environments. Perform hands‑on exploitation, analyze network and host data to identify attack paths and vulnerabilities, produce clear remediation reports and client briefings, mentor team members, research threat actor TTPs, and contribute to detection and platform improvements. Support customer readiness through exercises and workshops.
Summary Generated by Built In

Dragos is on a relentless mission to defend industrial organizations that provide us with the necessities of modern civilization; running water, functioning electricity, and safe industrial working environments. As the market leader in ICS/OT Cybersecurity, we are dedicated to arming our customers with best-in-class technology, threat intelligence, and services to protect their systems as effectively and efficiently as possible. We’re a remote-first culture with operations in North America, Europe, the Middle East, and APAC. We’re looking for mission-oriented teammates who embody our core values of authenticity, transparency, and trust. Are you ready to make a difference? Come join a mission that can save the world! 

About the Role: 

As a Senior Penetration Tester on the Dragos Professional Services team, you will lead advanced vulnerability assessments, penetration testing, and adversary emulation activities within industrial technology environments. The focus is on identifying real‑world attack paths across ICS/OT networks through hands‑on exploitation, deep technical analysis, and close collaboration with customers across critical infrastructure sectors such as oil and gas, electric, water treatment, and manufacturing. This position translates complex technical findings into clear, actionable remediation guidance, contributes insights that inform detection and platform development, mentors team members, and represents Dragos through customer engagement and participation in the broader OT security community.

Responsibilities:  

  • Lead and execute advanced vulnerability assessments, penetration tests, and purple team operations within industrial (ICS/OT) environments, including hands‑on exploitation of customer networks, systems, and applications.
  • Perform deep technical analysis of network and host data—such as packet captures, firewall rules, system configurations, and directory services—to identify attack paths, misconfigurations, anomalous activity, and vulnerabilities.
  • Conduct ongoing research into threat actor TTPs, tools, and vulnerabilities, applying findings to active engagements and contributing insights that support detection development and Dragos technology advancement.
  • Deliver clear, technically accurate reports and client briefings that outline findings, security impacts, and prioritized remediation recommendations, while supporting customer readiness through exercises and workshops as needed.
  • Strengthen team effectiveness by mentoring peers, improving workflows and runbooks, and contributing to the broader OT security community through collaboration, content creation, and knowledge sharing.

Qualifications:  

  • 4+ years of hands‑on cybersecurity experience in ICS/OT environments, including vulnerability assessment, penetration testing, or red team activities.
  • Strong understanding of penetration testing methodologies (white, gray, and black box) and hands‑on experience with common offensive security tools such as Kali Linux, Metasploit, Cobalt Strike, Burp Suite Pro, and LOTL techniques.
  • Solid experience in cyber threats, attack vectors, exploits, and adversary tactics, techniques, and procedures (TTPs), with the ability to analyze network traffic and host‑based data effectively.
  • Excellent written and verbal communication skills, with proven ability to produce high‑quality reports and clearly present technical findings to both technical and non‑technical audiences.
  • Self‑motivated and collaborative with the ability to work independently in a remote/distributed environment.
  • Willingness to travel up to 30% to support customer engagements.

Compensation: 

  • Salary: $140,000
  • Competitive Equity Package  
  • Comprehensive Benefits Plan 

 

#LI-JF1 #LI-REMOTE 



Dragos is an Equal Opportunity Employer and considers applicants for employment without regard to race, color, religion, sex, orientation, national origin, age, disability, genetics, or any other basis forbidden under federal, state, or local laws. All new hires must pass a background check as a condition of employment.

Skills Required

  • 4+ years of hands‑on cybersecurity experience in ICS/OT environments, including vulnerability assessment, penetration testing, or red team activities.
  • Strong understanding of penetration testing methodologies (white, gray, and black box) and hands‑on experience with tools such as Kali Linux, Metasploit, Cobalt Strike, Burp Suite Pro, and LOTL techniques.
  • Solid experience in cyber threats, attack vectors, exploits, and adversary tactics, techniques, and procedures (TTPs), with ability to analyze network traffic and host‑based data.
  • Excellent written and verbal communication skills, with proven ability to produce high‑quality reports and present findings to technical and non‑technical audiences.
  • Self‑motivated and collaborative with ability to work independently in a remote/distributed environment.
  • Willingness to travel up to 30% to support customer engagements.
  • Must pass a background check as a condition of employment.
Am I A Good Fit?
beta
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
HQ: Hanover, MD
295 Employees
Year Founded: 2016

What We Do

Dragos is an industrial (OT/ICS/IIoT) cybersecurity company on a mission to safeguard civilization. Our integrated software platform provides critical visibility into ICS and OT networks so that threats are identified, and can be addressed before they become significant events, our solutions are optimized for emerging applications like the Industrial Internet of Things (IIoT), enabling our clients in power and water utilities, energy, and manufacturing industries to establish a resilient and adaptable security posture.

Similar Jobs

Cloudflare Logo Cloudflare

Director, Enterprise Sales (AI & Digital Natives)

Cloud • Information Technology • Security • Software • Cybersecurity
Remote or Hybrid
2 Locations
4400 Employees
415K-496K Annually

FloQast Logo FloQast

Consultant

Artificial Intelligence • Fintech • Software
Remote
United States
800 Employees

Coinbase Logo Coinbase

Technical Program Manager

Artificial Intelligence • Blockchain • Fintech • Financial Services • Cryptocurrency • NFT • Web3
Easy Apply
Remote
USA
4700 Employees
149K-175K Annually

Coinbase Logo Coinbase

Recruiter

Artificial Intelligence • Blockchain • Fintech • Financial Services • Cryptocurrency • NFT • Web3
Easy Apply
Remote
USA
4700 Employees
166K-196K Annually

Similar Companies Hiring

SEON Thumbnail
Artificial Intelligence • Cybersecurity
Budapest, Budapest
415 Employees
Oso Thumbnail
Software • Security • Infrastructure as a Service (IaaS)
New York, New York
36 Employees
Credal.ai Thumbnail
Software • Security • Productivity • Machine Learning • Artificial Intelligence
Brooklyn, NY

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account