1

Burp Suite Practitioner Jobs (NOW HIRING)

DataRobot empowers practitioners to deliver predictive and generative AI, and enables leaders to ... Hands-on experience with common security tools such as Semgrep, Trivy, and Burp Suite. * Strategic ...

DataRobot empowers practitioners to deliver predictive and generative AI, and enables leaders to ... Hands-on experience with common security tools such as Semgrep, Trivy, and Burp Suite. * Strategic ...

DataRobot empowers practitioners to deliver predictive and generative AI, and enables leaders to ... Hands-on experience with common security tools such as Semgrep, Trivy, and Burp Suite. * Strategic ...

Senior Security Engineer (Red Team)

$117K - $160K/yr

... such as Burp Suite, OWASP ZAP, Nmap, Metasploit, Cobalt Strike, or equivalent frameworks. • ... practitioner background in adversarial machine learning, LLM security, or voice/audio deepfake ...

FedCyber Supervisor - Cyber Compliance

Washington, DC · On-site

$125K - $169K/yr

... Burp Suite Certified Practitioner, or AWS Certified Security Specialist. At RSM, we offer a competitive benefits and compensation package for all our people.We offer flexibility in your schedule ...

next page

Showing results 1-20

Burp Suite Practitioner information

See salary details

$41.5K

$130.3K

$200K

How much do burp suite practitioner jobs pay per year?

As of Jul 15, 2026, the average yearly pay for burp suite practitioner in the United States is $130,295.00, according to ZipRecruiter salary data. Most workers in this role earn between $108,000.00 and $150,000.00 per year, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as a Burp Suite Practitioner, and why are they important?

To thrive as a Burp Suite Practitioner, you need a solid understanding of web application security, penetration testing methodologies, and common vulnerabilities, often supported by a background in cybersecurity or computer science. Familiarity with Burp Suite's suite of tools, web protocols, and relevant certifications like OSCP or Burp Suite Certified Practitioner is typically required. Strong analytical thinking, attention to detail, and effective communication skills help practitioners identify vulnerabilities and clearly report findings. These skills are crucial to accurately assessing web application security and providing actionable recommendations to reduce organizational risk.

What is a Burp Suite Practitioner?

A Burp Suite Practitioner is a cybersecurity professional proficient in using Burp Suite, a popular tool for web application security testing. They use Burp Suite to identify vulnerabilities such as SQL injection, cross-site scripting (XSS), and other security flaws in websites and web applications. These practitioners often perform penetration testing, automate security scans, and analyze application traffic to help organizations improve their security posture. Their expertise is essential for finding and addressing weaknesses before malicious actors can exploit them.

What are some common challenges faced by Burp Suite Practitioners during web application penetration testing?

Burp Suite Practitioners often encounter challenges related to complex authentication mechanisms, encrypted traffic, and dynamic web applications that change content or structure with each visit. Navigating these obstacles requires a strong understanding of session management, the ability to configure Burp Suite's tools (like interceptors and decoders), and collaboration with development teams to gain necessary access or bypass security controls ethically. Practitioners may also face time constraints during assessments, making efficient workflow and prioritization of vulnerabilities essential for successful testing.
More about Burp Suite Practitioner jobs
What cities are hiring for Burp Suite Practitioner jobs? Cities with the most Burp Suite Practitioner job openings:
What states have the most Burp Suite Practitioner jobs? States with the most job openings for Burp Suite Practitioner jobs include:
Infographic showing various Burp Suite Practitioner job openings in the United States as of July 2026, with employment types broken down into 80% Full Time, and 20% Contract. Highlights an 60% In-person, 20% Hybrid, and 20% Remote job distribution, with an average salary of $130,295 per year, or $62.6 per hour.
Application Security Consultant / Penetration Tester

Application Security Consultant / Penetration Tester

TrustedSec

Fairlawn, OH • On-site

$80K - $150K/yr

Full-time

PTO

This job post has expired today. Applications are no longer accepted.


Job description

Description:

TrustedSec is seeking a passionate information security professional to join our Software Security Team. The Application Security Consultant/Penetration Tester will report to the Practice Lead and be responsible for assisting clients in their software security needs, including conducting application security assessments to identify vulnerabilities, deliver clear and actionable findings, and help clients improve their overall security posture. At times, the consultant will also work with other teams within the organization to collaborate on deliverables.


This is both a technical and client-facing role. As such, the candidate should have experience in penetration testing and software development and be capable of building direct client relationships while contributing to TrustedSec’s growing body of security knowledge.


Requirements:

The candidate must be legally authorized to work in the United States. TrustedSec cannot provide sponsorship or consider applicants located outside the United States.


This is a remote position, allowing employees to work from their home residence within the United States. Occasional travel to client sites or industry-related events is required.


Duties/Responsibilities:

  • Conduct high-quality software security assessments with limited direct supervision
  • Produce clear, technically accurate reports with testing walkthroughs, findings, and actionable recommendations for both technical and executive audiences
  • Conduct client meetings, serve as the primary point of contact, and interface directly with clients during engagements
  • Serve as a subject matter expert for other consultants/teams and regularly collaborate and contribute to furthering the education and progression of the skills and success of everyone at TrustedSec
  • Maintain and build upon cybersecurity knowledge and skills by attending educational workshops and adopting a curious, continuous learning mindset
  • Review publications, write blog posts, and potentially speak at conferences or other events

Minimum Requirements:

  • 2+ years' recent experience testing web applications, thick clients, APIs, and web services
  • Proficiency in Burp Suite Professional
  • 2+ years' recent experience performing both unauthenticated and authenticated application testing
  • Advanced knowledge of manual application security testing, penetration testing methodologies, the OWASP Top 10, and the OWASP Testing Guide
  • Strong understanding of common security controls and vulnerability testing techniques
  • Passion for the Information Security industry, including keeping up to date with current software technologies, platforms, frameworks, and security issues
  • Good time management skills and the ability to meet strict deadlines
  • Demonstrated analytical and project management skills
  • Excellent verbal and written communication skills including active listening and competence in presenting findings and recommendations to audiences with a range of technical understanding
  • Ability to write technical documents with correct spelling, grammar, and punctuation and the ability to distill information for non-technical readers
  • Thrive in a fast-paced, collaborative environment
  • Ability to take initiative and work independently

Desired Skills/Education/Experience:

  • Familiarity with AI/LLMs/frontier models/agentic tools/coding assistants
  • Experience in mobile application testing
  • Ability to conduct source code reviews in multiple programming languages
  • Prior consulting experience
  • Industry-recognized security certification(s) such as OSWE, Burp Suite Certified Practitioner, OSCP, etc.
  • Programming/software development experience/DBA/sysadmin/etc.
  • Experience maintaining high levels of privacy and OpSec for clients, including government agencies

Physical Requirements:

  • Prolonged periods of sitting at a desk and working on a computer
  • Ability to lift 15 pounds at times
  • Travel up to 10% over the course of the calendar year
  • Must reside in the United States

Salary Description:

Base compensation typically ranges from $80,000 - $150,000 and is determined by multiple factors such as geographic location, relevant experience, and demonstrated skills. In addition to base pay, we offer a generous paid time off allowance, paid holidays, and a performance pay bonus program.


Learn more about TrustedSec here!