Web Application Penetration Tester – Cybersecurity Remote

Posted 2026-05-05
Remote, USA Full-time Immediate Start
    Job Description:
  • Conduct penetration testing, ethical hacking, and security assessments on web applications, networks, cloud infrastructures (AWS, Azure, GCP), and enterprise IT environments.
  • Identify and exploit vulnerabilities such as SQL Injection (SQLi), Cross-Site Scripting (XSS), Server-Side Request Forgery (SSRF), Remote Code Execution (RCE), and Insecure Direct Object References (IDOR).
  • Perform network security assessments, including port scanning, vulnerability analysis, privilege escalation, and Active Directory (AD) security testing.
  • Utilize cybersecurity tools such as Burp Suite, Metasploit, Nmap, Wireshark, Nessus, Acunetix, Kali Linux, and BloodHound for in-depth security evaluations.
  • Develop and execute custom scripts, automation tools, or exploits for penetration testing scenarios.
  • Conduct post-exploitation analysis, privilege escalation, and persistence techniques.
  • Provide detailed security reports, risk assessments, remediation plans, and mitigation strategies to enhance security posture.
  • Stay updated on zero-day vulnerabilities, exploit development, cloud security threats, and emerging cyberattack techniques.
    Requirements:
  • Hands-on experience in penetration testing, web security, vulnerability assessments, and red teaming.
  • Strong understanding of ethical hacking methodologies including OSSTMM, OWASP Top 10, PTES, NIST, MITRE ATT&CK, and CIS Benchmarking.
  • Proficiency in web application security testing, cloud security (AWS, Azure, GCP), and API security.
  • Experience in network security, firewall evasion, social engineering, and Wi-Fi security testing.
  • Knowledge of reverse engineering, malware analysis, exploit development, and buffer overflow techniques is a plus.
  • Familiarity with Active Directory attacks, Kerberoasting, Pass-the-Hash, Mimikatz, BloodHound, and PowerShell Empire is highly desirable.
  • Proficiency in scripting/programming (Python, Bash, PowerShell, JavaScript, or C) for security automation and exploit development.
  • Relevant certifications such as OSCP, OSCE, OSEP, CRTP, CEH, GPEN, CISSP, eWPTX, or GXPN are highly preferred.

Benefits:

Apply Now

Similar Jobs

Recent Jobs

Remote Penetration Tester
Remote: Senior Information Security Analyst (SSH Key Manamgement)
Endpoint Security Analyst - Hybrid - NYC
Cyber Security Analyst/Engineer-*PCI Experience Required*-Hybrid Remote Located In Boise, ID
Land Solutions Project Manager, Electric Transmission, Remote - Milwaukee, WI
T&D Project Manager (Remote + Travel)
Project Manager/ Capability Manager
EHV Lifecycle Project Manager - Remote
URGENT NEED - Technical Project Manager _ Atlanta, GA - HYBRID
Project Manager – Marketing III

You May Also Like

**Experienced Live Chat Agent / Customer Support Specialist – US Remote Customer Service Representative**
Certified Coder (Remote) - Surgery
HR Specialist - Records Management (Part Time Consultant for Future Opportunities)
Entry-Level Remote Customer Support Agent – Part-Time E-Commerce Customer Service Representative (Work From Home)
Bilingual Human Resources Generalist job at Shipfusion in Carol Stream, IL
Remote Energy Services Data Entry Clerk – Client Records Management & Administrative Support Specialist (WFH)
Freelance, Senior Clinical Research Associate or CRA II, Florida, USA
Part-Time Remote Data Entry Specialist – Live Chat Customer Support & Information Management
**Experienced Customer Service Representative – Flexible Remote Role with Competitive Hourly Rate**
Remote Live Chat Administrator – Entry-Level Customer Support Specialist (Work From Anywhere | No Experience Required)
Back to Job Board