✦ Luna Orbit — Cybersecurity

Senior Penetration Tester

at JPMorgan Chase

📍 Tampa, FL, United States Onsite Posted April 04, 2026
Apply Now → ← Browse All Jobs

Position Details

Type Full-Time
Experience executive
Exp. Years 5+ years
Education Not specified
Category Cybersecurity

About this role

Senior Penetration Tester at JPMorgan Chase will plan, scope, and execute penetration testing engagements across a variety of environments, delivering comprehensive reports with remediation recommendations and mentoring junior testers.

Key Responsibilities

  • Plan, scope, and execute penetration testing engagements across a variety of environments
  • Collect prerequisites and approvals
  • Perform manual and automated testing
  • Document findings with risk assessments and remediation recommendations
  • Conduct peer reviews and mentor junior testers

Technical Overview

Hands-on testing across web, API, cloud (AWS/Azure/GCP), infrastructure, and mobile; uses Burp Suite, Nmap, Metasploit; strong knowledge of OWASP Top Ten and NIST CSF; produces detailed technical reports.

Ideal Candidate

The ideal candidate is an executive-level penetration tester with 5+ years of hands-on experience, deep cloud experience (AWS/Azure/GCP), and a proven ability to mentor juniors and communicate findings to senior stakeholders.

Must-Have Skills

5+ years of hands-on penetration testing experienceExperience with manual penetration testing of webAPIcloudinfrastructurethick-clientand/or mobile applicationsStrong understanding of OWASP Top TenNIST Cybersecurity FrameworkAbility to identify and articulate systemic security issues and remediationExcellent organizational and communication skillsExperience conducting peer reviews of penetration test reports and mentoring junior testers

Nice-to-Have Skills

Knowledge of cybersecurity practices in US financial services sectorPenetration testing for Windows and Unix-like OSSecurity-focused source code reviews (PythonJavaRust)Reverse engineering thick-client and mobile applicationsCertifications such as OSWECREST (CRTCCT)OSCPOSCEGXPNGWAPTGPENGMOBBSCP

Tools & Platforms

Burp SuiteNmapMetasploitAWSAmazon Web ServicesAzureMicrosoft AzureGoogle Cloud PlatformGCPAndroidiOS

Required Skills

Penetration testingmanual penetration testingBurp SuiteNmapMetasploitAWSAmazon Web ServicesAzureGoogle Cloud PlatformGCPAndroidiOSOWASP Top TenNIST Cybersecurity FrameworkThreat modelingWeb applicationsAPIsCloud platformsOSCEOSCPreverse engineering

Hard Skills

Penetration testingBurp SuiteNmapMetasploitWeb applicationsAPIscloud (AWS/Azure/GCP)AndroidiOSOWASP Top TenNIST Cybersecurity FrameworkThreat modelingSecurity reportsPeer reviewsRemediation guidanceOffensive security

Soft Skills

CommunicationOrganizational skillsMentoringTeam collaborationTechnical writing

Certifications

Preferred

OSWECREST CRTCREST CCTOSCPOSCEGXPNGWAPTGPENGMOBBSCP

Industry & Role

Industry Banking
Job Function Lead offensive security engagements to safeguard JPMorgan Chase's critical assets
Role Subtype lead
Tech Domains Cybersecurity, Amazon Web Services, Azure, Google Cloud Platform, Docker, Kubernetes, Python, Java

Keywords for Your Resume

Senior Penetration Testerpenetration testingBurp SuiteNmapMetasploitAWSAmazon Web ServicesAzureMicrosoft AzureGoogle Cloud PlatformGCPOWASP Top TenNIST Cybersecurity Frameworkthreat modelingweb applicationsAPIscloud platformsAndroidiOSon-siteTampabankingoffensive securityPenetration testing

Deal Breakers

5+ years of hands-on penetration testing experience, On-site in Tampa, Florida, Experience with web/API/cloud/mobile pentesting, Ability to produce detailed technical reports

Apply for this Position →

Get matched to jobs like this

Luna finds roles that fit your skills and career goals — no endless scrolling required.

Create a Free Profile