Senior Penetration Tester (Web/Mobile applications)

Job TypeFulltime

Skills RequiredPython Java Azure

LocationHopkins, Minnesota

SalaryNo salary information was found.

Date Posted September 3, 2025

Accord Technologies Inc

Accord Technologies Inc is seeking a Senior Penetration Tester to perform security assessments on web and mobile applications. The role requires extensive experience in penetration testing tools and cloud security expertise.

Job description

Role: Senior Penetration Tester Location: Minnetonka, MN (Hybrid- 3 Days a week) Contract Duration: 12+ Months Nbr of openings: 10 Position type: Contract Mandatory: OWASP Top 10, NIST, and secure SDLC, DAST and SAST tools-Burp Suite, Metasploit, Acunetix, ZAP, Checkmarx, AppScan), Python, Java, PHP, Perl, Objective-C,SSL/TLS, TCP/IP, ACLs, routing, load balancing, LAMP, LEMP, and MEAN stack, AWS,Azure, Certification is mandatory in OSCP / OSWA / CEH or SANS (GWAPT, GPEN, GWEB) Key Responsibilities • Perform manual and automated penetration testing of web and mobile applications. • Lead security assessments using DAST and SAST tools (e.g., Burp Suite, ZAP, Checkmarx, AppScan, WebInspect, Acunetix). • Evaluate and secure cloud environments (AWS and Azure) including EC2, S3, RDS, VNets, and Azure DevOps pipelines. • Conduct API security reviews, enforce secure coding practices, and validate implementations against best practices. • Perform code reviews in Python, Java, PHP, Perl, and Objective-C to identify vulnerabilities. • Provide architecture-level feedback on SSL/TLS, networking, load balancing, and ACL configurations. • Develop and maintain Application Security Programs with a focus on CI/CD integration and secure SDLC. • Lead scoping calls with stakeholders, define testing approaches, and present findings/reports. • Actively research emerging exploits and contribute to vulnerability discovery (e.g., CTF, Hack the Box). • Collaborate with engineering and product teams to ensure remediation strategies are adopted. Required Skills • 10+ Years of experience. • Strong knowledge of OWASP Top 10, NIST, and secure SDLC. • Proficiency in penetration testing tools: Burp Suite, Metasploit, ZAP, Checkmarx, AppScan. • Hands-on cloud security expertise in AWS (EC2, S3, RDS, KMS) and Azure security architecture. • Strong programming background in Python, Java, PHP, Perl, Objective-C for code review and exploit development. • In-depth knowledge of network security concepts: SSL/TLS, TCP/IP, ACLs, routing, load balancing. • Familiarity with LAMP, LEMP, and MEAN stacks from a security perspective. • Excellent communication skills for both technical and business stakeholders. Required Certifications • OSCP / OSWA / CEH, or SANS (GWAPT, GPEN, GWEB)

Requirements

• Mandatory: OWASP Top 10, NIST, and secure SDLC, DAST and SAST tools-Burp Suite, Metasploit, Acunetix, ZAP, Checkmarx, AppScan), Python, Java, PHP, Perl, Objective-C,SSL/TLS, TCP/IP, ACLs, routing, load balancing, LAMP, LEMP, and MEAN stack, AWS,Azure,

• Certification is mandatory in OSCP / OSWA / CEH or SANS (GWAPT, GPEN, GWEB)

• 10+ Years of experience

• Strong knowledge of OWASP Top 10, NIST, and secure SDLC

• Proficiency in penetration testing tools: Burp Suite, Metasploit, ZAP, Checkmarx, AppScan

• Hands-on cloud security expertise in AWS (EC2, S3, RDS, KMS) and Azure security architecture

• Strong programming background in Python, Java, PHP, Perl, Objective-C for code review and exploit development

• In-depth knowledge of network security concepts: SSL/TLS, TCP/IP, ACLs, routing, load balancing

• Familiarity with LAMP, LEMP, and MEAN stacks from a security perspective

• Excellent communication skills for both technical and business stakeholders

• Required Certifications

• OSCP / OSWA / CEH, or SANS (GWAPT, GPEN, GWEB)

Similar Jobs

Johns Hopkins University Applied Physics Laboratory

Sep 9, 2025

AI Applications Software Developer and Test Engineer Jobs

Laurel, Maryland

Full-time job

Join the Intelligent Combat Systems Group at Johns Hopkins APL as an AI Applications Software Developer and Test Engineer, where you'll work on cutting-edge autonomous systems. Contribute to innovative projects that enhance operational effectiveness for U.S. warfighters.

View Details

JavaPythonReact

VSG Business Solutions LLC

Sep 3, 2025

Front End Web Developer with ArcGIS at VSG Business Solutions LLC Austin, TX

Austin, Texas

Full-time job

VSG Business Solutions LLC is seeking a Front End Web Developer with ArcGIS experience to join their team in Austin, TX. The role involves working on a Scrum team to develop and enhance web applications utilizing ArcGIS technologies.

View Details

JavaScriptTypeScriptAzure

Abacus Technology Corporation

Sep 10, 2025

Applications Developer IV Jobs

Aberdeen, Maryland

Full-time job

Abacus Technology Corporation is seeking an Applications Developer IV to provide full stack development for cloud solutions for the Army Test and Evaluation Command in Aberdeen, Maryland. This role involves designing and developing cloud-native applications, implementing CI/CD practices, and ensuring application security.

View Details

AzureC#Python

Johns Hopkins University Applied Physics Laboratory

Sep 9, 2025

AI Applications Software Developer and Test Engineer Jobs

Laurel, Maryland

Full-time job

View Details

JavaPythonReact

VSG Business Solutions LLC

Sep 3, 2025

Front End Web Developer with ArcGIS at VSG Business Solutions LLC Austin, TX

Austin, Texas

Full-time job

View Details

JavaScriptTypeScriptAzure

Abacus Technology Corporation

Sep 10, 2025

Applications Developer IV Jobs

Aberdeen, Maryland

Full-time job

View Details

AzureC#Python

Job TypeFulltime

Skills RequiredPython Java Azure

LocationHopkins, Minnesota

SalaryNo salary information was found.

Date Posted September 3, 2025

Senior Penetration Tester (Web/Mobile applications)

Accord Technologies Inc

Job description

Requirements

Similar Jobs

Senior Engineer - Full Stack Web Applications