Job Description
We are looking for a professional cybersecurity firm to perform a Black Box penetration test (external and internal) for our organization. The engagement must include a formal security certificate and a detailed penetration testing report, as results will be shared with one of our clients.
Scope – External Pentest (Black Box)
Public website: https://www.virtualemilystaffing.com,
Publicly exposed Microsoft 365 services:
Outlook (OWA), Entra ID (authentication portal), Microsoft Teams
Domains in scope: virtualemily.com, virtualemilystaffing.com, virtualemilycareers
Fully remote organization (no on-prem infrastructure, no owned public IPs)
Scope – Internal Pentest
Security assessment of approximately 45 endpoints, including:
Corporate devices
Personal devices used for corporate activities
Engagement Restrictions
No Denial of Service or stress testing
No phishing campaigns
No mass brute-force attacks
No impact to shared hosting infrastructure (Wix / Microsoft)
Deliverables
Technical penetration testing report
Executive summary
Security / Pentest completion certificate suitable for client sharing
Requirements
Proven experience in corporate penetration testing
Recognized methodology (OWASP, PTES, NIST, or equivalent)
Ability to issue formal security certification
Proposal Requirements
Please include:
Recommended approach and scope confirmation
Estimated execution timeline
Separate pricing for:
External pentest
Internal pentest (45 devices)
Apply Now
Apply Now