Penetration Testing Coordinator at Oneleet (S22)
$60K - $85K
YC's most popular security compliance platform (SOC 2, ISO 27001, HIPAA, GDPR)
Remote
Full-time
US citizenship/visa not required
1+ years
About Oneleet

Oneleet is a Y Combinator-funded cybersecurity startup that aims to make effective cybersecurity easy and painless for companies. The company provides a full-coverage cybersecurity platform through which companies can build, manage, and monitor their cybersecurity management program.

The core product is a roadmap for companies that helps them become secure and build trust with their partners, which requires the implementation of numerous solutions like penetration testing, vulnerability assessments, awareness training, static code scanning, endpoint monitoring, and more.

About the role

About Oneleet:

Oneleet is a cybersecurity startup with a mission to revolutionize the industry. It aims to make effective cybersecurity easy and painless for companies by providing a comprehensive platform that helps companies build, manage, and monitor their cybersecurity management program.

Oneleet is backed by top-tier venture capital firms including Y Combinator, and is part of their S22 cohort. The founding team has over 10 years of penetration testing and cybersecurity experience.

Be a part of our team of opinionated rebels and help us create a category-defining company on a mission to reshape the broken and fragmented cybersecurity industry.

Who we’re looking for:

At Oneleet we value individuals who are passionate and motivated to make a large impact in the cybersecurity ecosystem. We are looking for rebels with a growth mindset who love to take ownership, who exhibit excellent communication skills, and who have a "can-do" attitude towards technical challenges and innovation.

A rebel’s mindset - we’re frustrated with the state of the cybersecurity industry, and believe that a rebel mindset is key to changing it. Opinionated (but not obstinate) - we believe that having an opinion is better than having no opinion, and helps us move quicker.

We’re looking for a tech-savvy relationship builder to lead our customers through every stage of their penetration testing journey with us. In this role, you’ll own pentest engagements from start to finish- running scoping calls, coordinating test execution, and acting as the trusted point of contact for clients. You’ll translate complex security work into clear guidance, answer questions along the way, and ensure every deliverable lands smoothly and on time.

This role is a great fit for a junior pentester who’s eager to grow and gain exposure to the business side of security. You’ll sharpen your technical skills while also building client relationships, learning how engagements are scoped, managed, and delivered, and seeing firsthand how security work drives real business outcomes. If you enjoy collaborating with people, explaining technical concepts in a clear way, and want a well-rounded path to advance your career, this position offers hands-on experience and meaningful growth opportunities.

Key Responsibilities

  • Lead scoping calls with clients to understand requirements, timelines, and target environments
  • Serve as primary point of contact for clients throughout the engagement lifecycle
  • Manage project schedules and ensure deliverables are completed on time
  • Answer client questions regarding testing approach, findings, and remediation guidance
  • Coordinate internal resources and communicate project status to stakeholders
  • Facilitate kickoff meetings, status updates, and closeout discussions
  • Handle engagement logistics including access provisioning, scheduling, and documentation
  • Gather and organize pre-engagement information (IP ranges, credentials, rules of engagement)
  • Ensure client satisfaction and address concerns promptly and professionally
  • Support quality assurance processes to ensure consistent deliverable standards
  • Assist pentesters on complex engagements and act as the point contact for escalated technical issues as needed
  • Stay current on emerging threats, vulnerabilities, and testing methodologies

Requirements

  • 1-3 years of experience in penetration testing, security assessments, or related cybersecurity role
  • Previous client-facing or customer service experience preferred
  • Understanding of networking fundamentals
  • Familiarity with operating systems and command line interfaces
  • Basic knowledge of web application technologies and common attack vectors
  • Ability to read and understand basic code
  • Strong written and verbal communication skills with ability to explain technical concepts to non-technical audiences
  • Professional demeanor with excellent client interaction abilities
  • Strong organizational skills with ability to manage multiple engagements simultaneously
  • Detail-oriented with excellent time management abilities
  • Proven ability to meet deadlines and work independently

Why Oneleet:

At Oneleet, you'll join a tight-knit crew of cybersecurity rebels on a mission to reshape the industry. We move fast, take ownership, and aren't afraid to disrupt stagnant business models to make security effortless for companies.

Our "work hard, play hard" culture means we hold ourselves to high standards, then celebrate wins. Our leading-edge tech stack keeps things exciting for any geek. And our experienced team ensures you're always sharpening your skills.

Bottom line, you'll have a blast doing deeply meaningful work. Expect hard problems, lots of autonomy, and plenty of growth. If you want your work to drive real change, this is the place to make your impact.

Oh, and we offer all the usual startup perks too:

  • Comprehensive benefits packages designed to support your health and well-being 🩺
  • Competitive comp & equity 💸
  • Plenty of PTO 🏝️
  • Floating holidays to honor the days that matter most to you 🎉
  • Flexible remote work 💻
  • Quarterly off sites to cool places (Amsterdam, Italy, Portugal etc) ✈️
Technology

We use Go and Prisma/Postgres on the backend and Typescript with React on the frontend. For task orchestration we use Temporal. Our applications are hosted on GCP using K8s.

Other jobs at Oneleet

fulltimeRemote$60K - $85K1+ years

fulltimeGB / AT / NL / BE / HR / CZ / DK / EE / FI / DE / GR / HU / IT / LV / LT / LU / MT / PL / PT / RO / SK / ES / SE / Remote (GB; AT; NL; BE; HR; CZ; DK; EE; FI; DE; GR; HU; IT; LV; LT; LU; MT; PL; PT; RO; SK; ES; SE)€70K - €120K EUR0.01% - 0.05%3+ years

fulltimeUS / Remote (US)Full stack$115K - $180K0.01% - 0.05%3+ years

fulltimeRemote (US)$65K - $100KAny (new grads ok)

fulltimeUS / Remote (US)$70K - $120K0.01% - 0.05%3+ years

fulltimeUS / Remote (US)$100K - $150K0.01%3+ years

fulltimeUS / Remote (US)$130 - $1800.01% - 0.05%6+ years

fulltimeRemote (US)Full stack$115K - $180K0.01% - 0.05%6+ years

fulltimeUS / Remote (US)Backend$120K - $180K0.01% - 0.05%6+ years

Hundreds of YC startups are hiring on Work at a Startup.

Sign up to see more ›