Position Details

Salary $106K – $177K USD / year

Type Not Specified

Experience mid

Exp. Years 3+ years

Education Bachelor's degree and a minimum of 3 years' relevant work experience

Category Cybersecurity

About this role

Senior role performing penetration testing (primarily Grey & White Box) of web apps, APIs, hardware, and mobile, with responsibility for testing scope, reporting, and collaboration across Cybersecurity and Technology.

Key Responsibilities

Complete penetration testing of web apps, APIs, hardware, and mobile
Define testing methods
Gather intelligence on target
Validate controls with breach simulations
Document and report findings

Technical Overview

Hands-on penetration testing in web/mobile/applications; expertise with Burp Suite Pro and testing frameworks; strong networking, operating system, and scripting knowledge; OWASP Top 10 familiarity.

Ideal Candidate

The ideal candidate is a senior penetration tester with hands-on experience in grey/white box testing of web apps, APIs, and networks, plus solid knowledge of OWASP Top 10. They should be ethical, highly professional, and capable of mentoring junior staff while collaborating across Cybersecurity and Technology teams.

Must-Have Skills

Bachelor's degreeMinimum of 3 years' relevant work experienceIntermediate knowledge of penetration testing and red team toolsStrong knowledge of networking and network protocolsIntermediate working knowledge of operating systems and scripting and/or coding

Nice-to-Have Skills

Bachelor's degree in Computer ScienceCybersecurityor Information TechnologyStrong understanding of information security conceptsEthical and professional demeanorExperience in social engineeringapplication securityphysical methodslateral movementIndustry-recognized certification in penetration testing

Tools & Platforms

Burp Suite Pro

Required Skills

Penetration testingGrey Box testingWhite Box testingAPIsWeb applicationsBurp Suite ProOWASP Top 10scripting/codingnetwork protocols

Hard Skills

Penetration testingGrey Box testingWhite Box testingAPIsWeb applicationsBreach and attack simulationScripting and/or codingBurp Suite ProOpen Source ToolingOWASP Top 10

Soft Skills

EthicalProfessionalismCommunicationCollaborationMentoring

Certifications

Required

Penetration testing-specific or Cybersecurity domain-related industry-recognized certification

Preferred

Penetration Testing Certification

Industry & Role

Industry Banking

Job Function Lead penetration testing efforts to identify and remediate weaknesses before attackers

Role Subtype Penetration Tester

Tech Domains Cybersecurity, Networking / TCP-IP, Linux, Windows Server

Deal Breakers

Bachelor's degree and 3+ years' relevant experience, Intermediate knowledge of penetration testing tools

Apply for this Position →

Get matched to jobs like this

Luna finds roles that fit your skills and career goals — no endless scrolling required.

Create a Free Profile

Senior Web Application Penetration Tester

Get matched to jobs like this