The Role
Conduct internal and external penetration tests, scope engagements, troubleshoot issues, present findings, lead testing efforts, and mentor junior members.
Summary Generated by Built In
Senior Penetration Testing Associate (Hybrid position in New York City)
Working at Drawbridge
At Drawbridge, we are committed to attracting and retaining the best individuals who enjoy working in a dynamic environment. You will be joining an agile team that will help you at every level of your career to identify and use your strengths to grow. This is an opportunity to work at a company that is open to new ideas as we build a dynamic and diverse environment for our employees. The work will be challenging and rewarding. You will gain hands-on experience from a team who strives to see its employees succeed.
Working in Client Advisory
You will be joining a team of technical consultants who have a passion for understanding and defending against emerging cyber threats. Our clients rely on our expertise to help them navigate the constantly changing cybersecurity landscape, and our team of consultants pair their technical knowledge and industry insight to offer critical risk management advice. The technical advisory team works as a collaborative unit, with each member bringing a unique technical skillset to the table.
Our Values
In this role you will:
You Have
Nice if you have
$115,000 - $135,000
About Drawbridge
Drawbridge is a premier provider of cybersecurity software and solutions to the alternative investment industry. Its proprietary platform helps firms exceed and manage their governance, risk, and compliance (GRC) requirements while combatting sophisticated cyber threats and third-party risks. Drawbridge's platform connects business, compliance, and IT to empower firms to centralize and manage their most robust security programs, improve their risk profile, and raise institutional capital. With a tested team focused on value delivery and a 900+ strong customer base, Drawbridge offers unmatched customer service and flexibility to help businesses proactively manage vulnerabilities, plan for growth, and reduce complexity. At Drawbridge, we are committed to attracting and retaining the best individuals who enjoy working in a dynamic environment
Our Hiring Process
We want to hire the most qualified individuals. We have designed a multi-step selection process that may include interviews and assessments. We render decisions quickly and we are eager to get to know you.
Affirmative Action and Equal Opportunity Employer
Drawbridge Partners, LLC is an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based on race, color, religion, sex, sexual orientation, gender identity, national origin, age, genetic information, non-disqualifying physical or mental disability, protected veteran status, or any other legally protected characteristic, in accordance with applicable law. All employment is decided on the basis of qualifications, merit, and business needs
Working at Drawbridge
At Drawbridge, we are committed to attracting and retaining the best individuals who enjoy working in a dynamic environment. You will be joining an agile team that will help you at every level of your career to identify and use your strengths to grow. This is an opportunity to work at a company that is open to new ideas as we build a dynamic and diverse environment for our employees. The work will be challenging and rewarding. You will gain hands-on experience from a team who strives to see its employees succeed.
Working in Client Advisory
You will be joining a team of technical consultants who have a passion for understanding and defending against emerging cyber threats. Our clients rely on our expertise to help them navigate the constantly changing cybersecurity landscape, and our team of consultants pair their technical knowledge and industry insight to offer critical risk management advice. The technical advisory team works as a collaborative unit, with each member bringing a unique technical skillset to the table.
Our Values
- Innovation: As the market leader, Drawbridge draws on its in-depth, collective expertise in its constant effort to innovate both our platform and our approach to service
- Integrity: Our clients and partners lean on us because they know we are trustworthy and honor what we say
- Collaboration: We are here to win, and we only win when we work together across team
- Diversity: We are inclusive. We honor, respect, and appreciate each other’s differences and perspectives
In this role you will:
- Conduct internal and external penetration tests across diverse client environments.
- Qualify testing requirements and scope engagements with clients.
- Troubleshoot and resolve testing issues independently.
- Present detailed assessment reports and findings directly to clients.
- Consult with clients regarding remediation strategies and best practices.
- Act as an escalation point for analysts and associates, providing technical guidance and mentorship.
- Manage test scheduling and set client timing expectations to ensure smooth project delivery.
- Serve as a technical consulting resource for both internal teams and external clients.
- Lead penetration testing efforts against Drawbridge systems and other critical infrastructure.
- Perform customized tests for clients, including physical assessments, laptop testing, remote access testing, and cloud environment evaluations.
- Create and update relevant internal documentation, ensuring accuracy and completeness.
- Develop repeatable and teachable processes for performing various testing tasks.
- Assist in improving the organization’s penetration test offerings, including reporting and process enhancements.
- Lead breach response discussions and provide advisory services during incident response engagements.
You Have
- 5+ years of offensive security experience, with a focus on penetration testing.
- Deep knowledge of penetration testing principles, tools, and techniques (e.g., Metasploit, Burp Suite, etc.).
- Ability to identify systemic security issues based on vulnerability and configuration analysis.
- Experience with Linux and Windows operating systems.
- Strong working knowledge of networking concepts and attack stages (footprinting, scanning, enumeration, gaining access, privilege escalation, maintaining access, network exploitation, covering tracks).
- Excellent written and verbal communication skills, with the ability to present findings to technical and non-technical audiences.
- Strong ability to prioritize, organize, and multi-task in a fast-paced environment.
- Experience mentoring junior team members and acting as a technical escalation point.
- Excellent written and verbal communication skills
- Excellent time management skills
Nice if you have
- Experience with IT infrastructure, cloud technology, business continuity, disaster recovery, and incident response.
- Knowledge of hedge fund, private equity, or RIA operations/compliance.
- Industry certifications (e.g., OSCP, GPEN, CEH).
- Experience with Python or comparable scripting language
- Competitive compensation package
- Employer 401(k) Contribution
- Benefits including Medical, Dental, Vision Coverage and Life Insurance
- Generous Paid Time Off Policy
- Employee Assistance Program (with focus on mindfulness and well-being)
- Life Insurance & Personal Accident Insurance
- Health Savings Account (HSA) or Flexible Spending Account (FSA)
- Healthy Work/Life Balance
- Exclusive Employee Offerings & Perks
$115,000 - $135,000
About Drawbridge
Drawbridge is a premier provider of cybersecurity software and solutions to the alternative investment industry. Its proprietary platform helps firms exceed and manage their governance, risk, and compliance (GRC) requirements while combatting sophisticated cyber threats and third-party risks. Drawbridge's platform connects business, compliance, and IT to empower firms to centralize and manage their most robust security programs, improve their risk profile, and raise institutional capital. With a tested team focused on value delivery and a 900+ strong customer base, Drawbridge offers unmatched customer service and flexibility to help businesses proactively manage vulnerabilities, plan for growth, and reduce complexity. At Drawbridge, we are committed to attracting and retaining the best individuals who enjoy working in a dynamic environment
Our Hiring Process
We want to hire the most qualified individuals. We have designed a multi-step selection process that may include interviews and assessments. We render decisions quickly and we are eager to get to know you.
Affirmative Action and Equal Opportunity Employer
Drawbridge Partners, LLC is an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based on race, color, religion, sex, sexual orientation, gender identity, national origin, age, genetic information, non-disqualifying physical or mental disability, protected veteran status, or any other legally protected characteristic, in accordance with applicable law. All employment is decided on the basis of qualifications, merit, and business needs
Top Skills
Burp Suite
Linux
Metasploit
Python
Windows
Am I A Good Fit?
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.
Success! Refresh the page to see how your skills align with this role.
The Company
What We Do
Drawbridge is a premier provider of cybersecurity software and solutions to the alternative investment and wealth management industry. Its proprietary platform helps firms manage their governance, risk, and compliance (GRC) requirements while combatting sophisticated cyber threats and third-party risks. Drawbridge's platform connects business, compliance, and IT to empower firms to centralize and manage their most robust security programs, improve their risk profile and raise institutional capital. With a tested team focused on value delivery and an 800+ strong customer base, Drawbridge offers unmatched customer service and flexibility to help businesses proactively manage vulnerabilities, plan for growth, and reduce complexity.
