Back to all jobs

Penetration TesterRemote

LocationOne Bowerman Dr, Beaverton, OR, USA
Work TypeContract/Temp
Positions1 Position
Published At:a day ago
  • Tester
  • Cybersecurity Fundamentals: IT Support Professional - DDLS
  • Progressive web applications
  • Penetration

Remote, US - PST preferred but not required

Category: Technology
  • Innovative Technology; High Quality Products, Self-Empowerment
  • Globally Responsible; Sustainable Products, Diversity of Thought
  • Celebration of Sports; If You Have a Body, You are an Athlete

Title: Penetration Tester

Location: Remote, US

Duration: 12-month contract

NIKE, Inc. does more than outfit the world's best athletes. It is a place to explore potential, obliterate boundaries and push out the edges of what can be. The company looks for people who can grow, think, dream and create. Its culture thrives by embracing diversity and rewarding imagination. The brand seeks achievers, leaders and visionaries. At Nike, it’s about each person bringing skills and passion to a challenging and constantly evolving game.

WHAT YOU WILL WORK ON

The Penetration Tester is part of Corporate Information Security, Security Operations organization and participates in the attack surface management of global computing assets. The Penetration Tester is responsible for security testing of Nike technology, coordination with stakeholders regarding their findings and completion of day to day tasks associated with penetration test program.

WHAT YOU WILL DO

  • Perform web application, API and network penetration testing within the designated scope and rules of engagement
  • Provide technical guidance for remediation of findings, collaborating with other CIS teams as necessary
  • Interface & support other CIS organizations such as Incident Response, Governance, Risk and Threat Intelligence as necessary

WHAT YOU WILL BRING

  • 4+ years of IT professional experience, with 2+ years previous penetration testing or application security background
  • Strong understanding of a variety of technical concepts such as: Application development, networking, systems administration, and information security practices
  • Strong web application development, security flaw and remediation technical understanding
  • Demonstrated experience with a variety of open source and commercial testing tools in areas such as web interception proxies, packet capture, debugging and API interaction.
  • Strong verbal and written communication skills to clearly convey both technical
  • Experience and knowledge of performing security tasks within AWS or Azure cloud environments
  • Ability to develop strong working relationships with a variety of other enabling teams.
  • Self-motivated and operates with a high sense of urgency and a high level of integrity.

Strongly Preferred

  • Certifications such as GIAC Web Application Penetration Testing (GWAPT), Offensive Security Certified Professional (OSCP) or GIAC Penetration Testing (GPEN) are strongly preferred.
  • Previous experience working in large scale environments with diverse technologies.
  • Ability to automate technical tasks through use of APIs or scripting.
  • Published on 20 Aug 2025, 4:13 PM