Penetration Testing as a Service (PTaaS) program

Penetration Testing as a Service (PTaaS) program Image

Skill Set :

Rapid 7 Penetration Testing

Total Experience :

5.00 to 10.00 Years

No of Openings :

1

Job Post Date :

25/04/2026

Job Expiry Date :

30/06/2026

Domain :

IT

Location :

JUNO BEACH

[United States]

Job Reference No :

4063873 Job Summary Role Summary The PTaaS Business Analyst supports the Penetration Testing as a Service (PTaaS) program by translating business needs into actionable requirements, optimizing workflows, and providing visibility into testing coverage, risk trends, and remediation progress. This role partners with security engineering, product owners, infrastructure teams, and PTaaS vendors to ensure penetration testing activities are well scoped, tracked, governed, and reported. Key Responsibilities

Requirements & Process Management:

Gather and refine requirements for PTaaS engagements; define standardized intake, scoping, and approval workflows; support playbooks and SOPs.

Stakeholder Coordination:

Act as liaison between security teams, application owners, infrastructure, and vendors; facilitate intake discussions, status updates, and governance forums.

Metrics & Reporting:

Develop dashboards and metrics (coverage, findings trends, SLA compliance, remediation aging); translate technical outcomes into business readable insights; support executive and audit reporting.

Tracking & Execution:

Manage PTaaS work items in Jira; track dependencies, risks, and blockers; monitor remediation progress and coordinate retests.

Continuous Improvement:

Identify process gaps and automation opportunities; integrate PTaaS with vulnerability management and risk platforms; contribute to roadmap planning and maturity improvements. Required Qualifications 4+ years as a Business Analyst, Security Analyst, or Program Analyst in cybersecurity or IT. Experience with penetration testing, vulnerability management, or security assurance programs. Strong skills in requirements gathering, documentation, and stakeholder facilitation. Experience with Jira, ServiceNow, Confluence, or similar tools. Strong analytical, communication, and reporting skills. Preferred Qualifications Familiarity with PTaaS delivery models and penetration testing lifecycle. Understanding of OWASP Top 10, CVSS, and risk prioritization. Experience in regulated or enterprise environments. Exposure to vulnerability management platforms (Tenable, Qualys, Rapid7). Certifications such as

CBAP, PMI

PBA, or security fundamentals. Core Competencies Business to technical translation, process optimization, data analysis, stakeholder management, and a risk based mindset.