Akkodis
Cybersecurity - Application Penetration Tester II
ONSITE: 5x a week onsite -
(conveniently located near Union Market Washington DC) Rate Range:
$145,000/hour to $180,000/hour; The rate may be negotiable based on experience, education, geographic location, and other factors. Job Overview: Our client is looking for an Application Penetration Tester II with 3+ years of experience, strong communication skills, creativity, innovation, and the ability to manage and resolve complex issues within a dispersed organization. As an Application Security Penetration Tester II, you will leverage your expertise in application security, utilizing SAST/DAST/SCA tooling to perform comprehensive technical testing. The technical testing will range from source code review to adversarial tradecraft mapping to test and validate security controls of web and mobile applications. Application Penetration Testers are expected and supported to continuously improve their tradecraft and expertise through research, professional development, and experience. Primary Responsibilities: Conduct technical testing of web and mobile applications including but not limited to penetration testing, vulnerability scanning, social engineering, and validating security controls. Perform in-depth source code reviews, providing security consulting on findings Implement static and dynamic security testing techniques Leverage automated security testing and monitoring such as integrating CI/CD pipelines Validate security controls around web resources and mobile applications and their backend web services Triage, publish, and communicate findings and recommendations to client stakeholders Develop comprehensive and accurate reports and presentations for varied stakeholders Utilize adversarial tradecraft and cyber threat intelligence to design, emulate, and execute assessments Perform innovative research and promote an environment of innovation and knowledge sharing Design and propose new penetration assessments based on prior findings and understanding of client infrastructure Develop/modify custom tooling or processes to solve or improve identified assessment or program needs Other program operational or project initiatives to be assigned Minimum Qualifications: 3+ years of experience performing application penetration tests or equivalent experience (i.e. 5+ years designing web or mobile applications, with less than 3 years of experience in penetration testing, red team emulation, or purple team operations) Comprehensive background in application, network, and system security Experience with Windows and Nix systems Experience with reading, writing, and editing code written in various programming languages, such as Perl, Python, Ruby, Bash, C/C++, C#, and Java Experience with security test tooling such as Burp Suite Pro, including identification and use of relevant plugins and extensions Proficiency in DAST/SAST/SCA tools like Black Duck, Coverity, Datadog, Chechmarx, Fortify Static Code Analyzer, OWASP ZAP, Acunetix, NetSparker, VeraCode, Plextrac, and Burp Suite. Preferred Qualifications: Experience with conducting reverse engineering on mobile applications, including applications with anti-emulator and obfuscation protections Experience with Docker and Kubernetes security Experience or familiarity with cloud security practices or penetration tests (AWS, Azure, Oracle) Holds at least one industry standard certification such as GWAPT, OSCP, GCIH, GPEN, GXPN, CRTE, CRTP, CEPT, GCPN, eWPT, CASE, GSSP-Java, and GSSP-.NET Active contributions to the security community such as research, public CVEs, bug-bounty recognitions, open-source projects, blogs, publications, conferences, etc. Experience with IOS and Android operating systems Experience with securing and testing API vulnerabilities Equal Opportunity Employer/Veterans/Disabled Benefit offerings available for our associates include medical, dental, vision, life insurance, short-term disability, additional voluntary benefits, EAP program, commuter benefits and a 401K plan. Our benefit offerings provide employees the flexibility to choose the type of coverage that meets their individual needs. In addition, our associates may be eligible for paid leave including Paid Sick Leave or any other paid leave required by Federal, State, or local law, as well as Holiday pay where applicable. To read our Candidate Privacy Information Statement, which explains how we will use your information, please visit https://www.modis.com/en-us/candidate-privacy/ 8/3/2023 The Company will consider qualified applicants with arrest and conviction records in accordance with federal, state, and local laws and/or security clearance requirements, including, as applicable: • The California Fair Chance Act • Los Angeles City Fair Chance Ordinance • Los Angeles County Fair Chance Ordinance for Employers • San Francisco Fair Chance Ordinance Seniority level
Seniority level Associate Employment type
Employment type Full-time Job function
Job function Information Technology and Engineering Industries IT Services and IT Consulting Referrals increase your chances of interviewing at Akkodis by 2x Inferred from the description for this job
Medical insurance Vision insurance 401(k) Get notified when a new job is posted. Sign in to set job alerts for “Penetration Tester” roles.
Cybersecurity Engineer/Analyst (Junior Level | 1-2 years exp.)
Leesburg, VA $105,000.00-$140,000.00 1 week ago Hagerstown, MD $180,000.00-$230,000.00 1 month ago Cybersecurity Engineer/Analyst (Junior Level | 1-2 years exp.)- Fairfax County
Arlington, VA $58,000.00-$78,000.00 6 hours ago Bethesda, MD $90,000.00-$100,000.00 4 hours ago Washington, DC $110,000.00-$125,000.00 2 weeks ago Washington DC-Baltimore Area $60.00-$63.00 1 week ago Washington DC-Baltimore Area $130,000.00-$175,000.00 2 days ago Mid-Level Cybersecurity Analyst/Engineer
Arlington, VA $66,000.00-$106,000.00 2 days ago Washington DC-Baltimore Area 16 hours ago Washington, DC $130,000.00-$180,000.00 1 week ago Washington, DC $120.00-$125.00 1 month ago HVA Assessment Operator / Penetration Tester (AES Certified)
Herndon, VA $140,000.00-$200,000.00 18 hours ago We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr
(conveniently located near Union Market Washington DC) Rate Range:
$145,000/hour to $180,000/hour; The rate may be negotiable based on experience, education, geographic location, and other factors. Job Overview: Our client is looking for an Application Penetration Tester II with 3+ years of experience, strong communication skills, creativity, innovation, and the ability to manage and resolve complex issues within a dispersed organization. As an Application Security Penetration Tester II, you will leverage your expertise in application security, utilizing SAST/DAST/SCA tooling to perform comprehensive technical testing. The technical testing will range from source code review to adversarial tradecraft mapping to test and validate security controls of web and mobile applications. Application Penetration Testers are expected and supported to continuously improve their tradecraft and expertise through research, professional development, and experience. Primary Responsibilities: Conduct technical testing of web and mobile applications including but not limited to penetration testing, vulnerability scanning, social engineering, and validating security controls. Perform in-depth source code reviews, providing security consulting on findings Implement static and dynamic security testing techniques Leverage automated security testing and monitoring such as integrating CI/CD pipelines Validate security controls around web resources and mobile applications and their backend web services Triage, publish, and communicate findings and recommendations to client stakeholders Develop comprehensive and accurate reports and presentations for varied stakeholders Utilize adversarial tradecraft and cyber threat intelligence to design, emulate, and execute assessments Perform innovative research and promote an environment of innovation and knowledge sharing Design and propose new penetration assessments based on prior findings and understanding of client infrastructure Develop/modify custom tooling or processes to solve or improve identified assessment or program needs Other program operational or project initiatives to be assigned Minimum Qualifications: 3+ years of experience performing application penetration tests or equivalent experience (i.e. 5+ years designing web or mobile applications, with less than 3 years of experience in penetration testing, red team emulation, or purple team operations) Comprehensive background in application, network, and system security Experience with Windows and Nix systems Experience with reading, writing, and editing code written in various programming languages, such as Perl, Python, Ruby, Bash, C/C++, C#, and Java Experience with security test tooling such as Burp Suite Pro, including identification and use of relevant plugins and extensions Proficiency in DAST/SAST/SCA tools like Black Duck, Coverity, Datadog, Chechmarx, Fortify Static Code Analyzer, OWASP ZAP, Acunetix, NetSparker, VeraCode, Plextrac, and Burp Suite. Preferred Qualifications: Experience with conducting reverse engineering on mobile applications, including applications with anti-emulator and obfuscation protections Experience with Docker and Kubernetes security Experience or familiarity with cloud security practices or penetration tests (AWS, Azure, Oracle) Holds at least one industry standard certification such as GWAPT, OSCP, GCIH, GPEN, GXPN, CRTE, CRTP, CEPT, GCPN, eWPT, CASE, GSSP-Java, and GSSP-.NET Active contributions to the security community such as research, public CVEs, bug-bounty recognitions, open-source projects, blogs, publications, conferences, etc. Experience with IOS and Android operating systems Experience with securing and testing API vulnerabilities Equal Opportunity Employer/Veterans/Disabled Benefit offerings available for our associates include medical, dental, vision, life insurance, short-term disability, additional voluntary benefits, EAP program, commuter benefits and a 401K plan. Our benefit offerings provide employees the flexibility to choose the type of coverage that meets their individual needs. In addition, our associates may be eligible for paid leave including Paid Sick Leave or any other paid leave required by Federal, State, or local law, as well as Holiday pay where applicable. To read our Candidate Privacy Information Statement, which explains how we will use your information, please visit https://www.modis.com/en-us/candidate-privacy/ 8/3/2023 The Company will consider qualified applicants with arrest and conviction records in accordance with federal, state, and local laws and/or security clearance requirements, including, as applicable: • The California Fair Chance Act • Los Angeles City Fair Chance Ordinance • Los Angeles County Fair Chance Ordinance for Employers • San Francisco Fair Chance Ordinance Seniority level
Seniority level Associate Employment type
Employment type Full-time Job function
Job function Information Technology and Engineering Industries IT Services and IT Consulting Referrals increase your chances of interviewing at Akkodis by 2x Inferred from the description for this job
Medical insurance Vision insurance 401(k) Get notified when a new job is posted. Sign in to set job alerts for “Penetration Tester” roles.
Cybersecurity Engineer/Analyst (Junior Level | 1-2 years exp.)
Leesburg, VA $105,000.00-$140,000.00 1 week ago Hagerstown, MD $180,000.00-$230,000.00 1 month ago Cybersecurity Engineer/Analyst (Junior Level | 1-2 years exp.)- Fairfax County
Arlington, VA $58,000.00-$78,000.00 6 hours ago Bethesda, MD $90,000.00-$100,000.00 4 hours ago Washington, DC $110,000.00-$125,000.00 2 weeks ago Washington DC-Baltimore Area $60.00-$63.00 1 week ago Washington DC-Baltimore Area $130,000.00-$175,000.00 2 days ago Mid-Level Cybersecurity Analyst/Engineer
Arlington, VA $66,000.00-$106,000.00 2 days ago Washington DC-Baltimore Area 16 hours ago Washington, DC $130,000.00-$180,000.00 1 week ago Washington, DC $120.00-$125.00 1 month ago HVA Assessment Operator / Penetration Tester (AES Certified)
Herndon, VA $140,000.00-$200,000.00 18 hours ago We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr