Penetration Tester
New
United StatesFull-TimeSenior
Salary123,250 - 166,750 USD per year
Apply NowOpens the employer's application page
Job Details
- Experience
- 8+ years
- Required Skills
- AWSReactNodeJS
Requirements
- 8+ years of experience in penetration testing, application security, or ethical hacking.
- Hands-on experience performing penetration tests on web applications, APIs, microservices, and cloud environments.
- Strong proficiency with tools such as Burp Suite, OWASP ZAP, Metasploit, Nmap, Nessus, Nikto, K6 Security, or custom scripts.
- Strong understanding of AWS security, including IAM, VPC, S3, Lambda, API Gateway, ECS/EKS, CloudTrail, and CloudWatch.
- Experience with NIST 800-53, RMF, FedRAMP, or federal ATO processes.
- Experience with container security including Docker, Kubernetes, and OpenShift.
- Ability to interpret logs, metrics, and security telemetry to identify attack paths.
- Excellent presentation and communication skills with a consultant mindset.
- BS/BA degree in information systems or equivalent experience.
- OSCP, OSWE, GWAPT, GPEN, or AWS Security Specialty certifications preferred.
Responsibilities
- Perform application, API, and cloud penetration tests on CMM systems prior to ATO submission.
- Conduct web, mobile, API, and microservices security testing using industry-standard tools.
- Execute AWS cloud penetration testing including IAM, S3, Lambda, API Gateway, and ECS/EKS.
- Validate implementation of NIST 800-53 controls and provide evidence for ATO packages.
- Collaborate with developers and cloud engineers to validate fixes and retest vulnerabilities.
- Prepare Security Assessment Reports (SAR) and risk findings for stakeholders.
- Support secure CI/CD pipeline enhancements and automated security scanning.
View Full Description & ApplyYou'll be redirected to the employer's site