... Cybersecurity Penetration Tester (or closely related occupation) performing black and white box testing to protect against cyber threats and ensure application security (web, mobile, API, and thick ...
... Cybersecurity Penetration Tester (or closely related occupation) performing black and white box testing to protect against cyber threats and ensure application security (web, mobile, API, and thick ...
ProSidian Seeks a Cyber Security Penetration Testing Specialist (SCA Code: -) in CONUS - Mid Atlantic Washington Metropolitan Area (Northern Virginia | Washington DC | Maryland) to support an ...
ProSidian Seeks a Cyber Security Penetration Testing Specialist (SCA Code: -) in CONUS - Mid Atlantic Washington Metropolitan Area (Northern Virginia | Washington DC | Maryland) to support an ...
... Cybersecurity Penetration Tester (or closely related occupation) performing black and white box testing to protect against cyber threats and ensure application security (web, mobile, API, and thick ...
... Cybersecurity Penetration Tester (or closely related occupation) performing black and white box testing to protect against cyber threats and ensure application security (web, mobile, API, and thick ...
Adjunct Faculty - Cybersecurity (Scripting, Penetration Testing & Web Security)
Manhattan, NY · On-site
Overview GST is seeking an Adjunct Faculty member for Cybersecurity (Scripting, Penetration Testing & Web Security) to teach graduate-level cybersecurity courses in scripting, penetration testing ...
Adjunct Faculty - Cybersecurity (Scripting, Penetration Testing & Web Security)
Manhattan, NY · On-site
Overview GST is seeking an Adjunct Faculty member for Cybersecurity (Scripting, Penetration Testing & Web Security) to teach graduate-level cybersecurity courses in scripting, penetration testing ...
Adjunct Faculty Cybersecurity (Scripting, Penetration Testing & Web Security)
Manhattan, NY · On-site
$5.2K - $6.5K/wk
GST is seeking an Adjunct Faculty member for Cybersecurity (Scripting, Penetration Testing & Web Security) to teach graduate-level cybersecurity courses in scripting, penetration testing, and web ...
Adjunct Faculty Cybersecurity (Scripting, Penetration Testing & Web Security)
Manhattan, NY · On-site
$5.2K - $6.5K/wk
GST is seeking an Adjunct Faculty member for Cybersecurity (Scripting, Penetration Testing & Web Security) to teach graduate-level cybersecurity courses in scripting, penetration testing, and web ...
Enterprise Cybersecurity Penetration Tester and Operator, Mid
Mclean, VA · On-site
$62K - $141K/yr
Share Enterprise Cybersecurity Penetration Tester and Operator, Mid The Opportunity: As a member of the Booz Allen internal Red Team, you'll lead enterprise and system-focused network and penetration ...
Enterprise Cybersecurity Penetration Tester and Operator, Mid
Mclean, VA · On-site
$62K - $141K/yr
Share Enterprise Cybersecurity Penetration Tester and Operator, Mid The Opportunity: As a member of the Booz Allen internal Red Team, you'll lead enterprise and system-focused network and penetration ...
Adjunct Faculty - Cybersecurity (Scripting, Penetration Testing & Web Security)
Manhattan, NY · On-site
$6.5K/wk
Overview GST is seeking an Adjunct Faculty member for Cybersecurity (Scripting, Penetration Testing & Web Security) to teach graduate-level cybersecurity courses in scripting, penetration testing ...
Adjunct Faculty - Cybersecurity (Scripting, Penetration Testing & Web Security)
Manhattan, NY · On-site
$6.5K/wk
Overview GST is seeking an Adjunct Faculty member for Cybersecurity (Scripting, Penetration Testing & Web Security) to teach graduate-level cybersecurity courses in scripting, penetration testing ...
Penetration Tester I
Mountain View, CA · On-site
They are seeking a Penetration Tester I to perform proactive cybersecurity penetration attacks on digital systems, document actions in detail, and create reports on security breaches.
Penetration Tester I
Mountain View, CA · On-site
They are seeking a Penetration Tester I to perform proactive cybersecurity penetration attacks on digital systems, document actions in detail, and create reports on security breaches.
Enterprise Cybersecurity Penetration Tester and Operator, Mid The Opportunity: As a member of the Booz Allen internal Red Team, you'll lead enterprise and system-focused network and penetration ...
Enterprise Cybersecurity Penetration Tester and Operator, Mid The Opportunity: As a member of the Booz Allen internal Red Team, you'll lead enterprise and system-focused network and penetration ...
Enterprise Cybersecurity Penetration Tester and Operator, Mid
Mclean, VA · On-site
$62K - $141K/yr
Enterprise Cybersecurity Penetration Tester and Operator, Mid The Opportunity: As a member of the Booz Allen internal Red Team, you'll lead enterprise and system-focused network and penetration ...
Enterprise Cybersecurity Penetration Tester and Operator, Mid
Mclean, VA · On-site
$62K - $141K/yr
Enterprise Cybersecurity Penetration Tester and Operator, Mid The Opportunity: As a member of the Booz Allen internal Red Team, you'll lead enterprise and system-focused network and penetration ...
IT Security Specialist - Penetration Tester
Silver Spring, MD · On-site
$125K - $150K/yr
Moderate Public Trust AttainX, Inc. is in search of a highly energetic Penetration Tester to join our team on a cyber security program supporting our US federal government client. Are you a seasoned ...
IT Security Specialist - Penetration Tester
Silver Spring, MD · On-site
$125K - $150K/yr
Moderate Public Trust AttainX, Inc. is in search of a highly energetic Penetration Tester to join our team on a cyber security program supporting our US federal government client. Are you a seasoned ...
IT Security Specialist - Penetration Tester
Silver Spring, MD · On-site
$125K - $150K/yr
Moderate Public Trust AttainX, Inc. is in search of a highly energetic Penetration Tester to join our team on a cyber security program supporting our US federal government client. Are you a seasoned ...
IT Security Specialist - Penetration Tester
Silver Spring, MD · On-site
$125K - $150K/yr
Moderate Public Trust AttainX, Inc. is in search of a highly energetic Penetration Tester to join our team on a cyber security program supporting our US federal government client. Are you a seasoned ...
Avionics Penetration Tester - Midlevel
Edwards, CA · On-site
$120K - $140K/yr
Overview Avionics Penetration Tester - Mid-Level - TGEE LOCATION: Edwards AFB, CA Salary Range ... The 48th CTS/Det 1 conducts Cyber Security Test & Evaluation of Embedded Avionics & Weapons Systems ...
Avionics Penetration Tester - Midlevel
Edwards, CA · On-site
$120K - $140K/yr
Overview Avionics Penetration Tester - Mid-Level - TGEE LOCATION: Edwards AFB, CA Salary Range ... The 48th CTS/Det 1 conducts Cyber Security Test & Evaluation of Embedded Avionics & Weapons Systems ...
Job Title: Cyber Security with Penetration Testing Exp// Penetration Tester with Security Experience Job Location: Austin, TX Job Duration: Fulltime Client: Apple Top Skills: * Penetration Testing
Job Title: Cyber Security with Penetration Testing Exp// Penetration Tester with Security Experience Job Location: Austin, TX Job Duration: Fulltime Client: Apple Top Skills: * Penetration Testing
Cyberspace Assessments & Exploitation Manager
Chantilly, VA · On-site
$113K - $153K/yr
Lead Cybersecurity Assessment and Penetration Testing Operations : Manage and execute comprehensive cybersecurity assessment and penetration testing programs supporting the Intelligence Community ...
Cyberspace Assessments & Exploitation Manager
Chantilly, VA · On-site
$113K - $153K/yr
Lead Cybersecurity Assessment and Penetration Testing Operations : Manage and execute comprehensive cybersecurity assessment and penetration testing programs supporting the Intelligence Community ...
... Penetration testing - Ethical Hacking - Cloud Computing Preferred Qualifications: Advertised: 08 Dec 2022 Eastern Standard Time Applications close: Back to search results Apply now Refer a friend ...
... Penetration testing - Ethical Hacking - Cloud Computing Preferred Qualifications: Advertised: 08 Dec 2022 Eastern Standard Time Applications close: Back to search results Apply now Refer a friend ...
Cyberspace Assessments & Exploitation Manager
$113K - $153K/yr
Lead Cybersecurity Assessment and Penetration Testing Operations : Manage and execute comprehensive cybersecurity assessment and penetration testing programs supporting the Intelligence Community ...
Cyberspace Assessments & Exploitation Manager
$113K - $153K/yr
Lead Cybersecurity Assessment and Penetration Testing Operations : Manage and execute comprehensive cybersecurity assessment and penetration testing programs supporting the Intelligence Community ...
Director, Product Development - Timekeeping
New York, NY · Hybrid
$183K - $216K/yr
May collaborate with the cybersecurity team to conduct penetration testing and manage White Hat operations to safeguard our software assets. * May contribute to the design and implementation of ...
Director, Product Development - Timekeeping
New York, NY · Hybrid
$183K - $216K/yr
May collaborate with the cybersecurity team to conduct penetration testing and manage White Hat operations to safeguard our software assets. * May contribute to the design and implementation of ...
Cyberspace Assessments & Exploitation Manager with Security Clearance
Chantilly, VA · On-site
$114K - $155K/yr
Lead Cybersecurity Assessment and Penetration Testing Operations: Manage and execute comprehensive cybersecurity assessment and penetration testing programs supporting the Intelligence Community ...
Cyberspace Assessments & Exploitation Manager with Security Clearance
Chantilly, VA · On-site
$114K - $155K/yr
Lead Cybersecurity Assessment and Penetration Testing Operations: Manage and execute comprehensive cybersecurity assessment and penetration testing programs supporting the Intelligence Community ...
Penetration Tester
Los Angeles, CA · On-site
Position : Penetration Tester Locations: Los Angeles( CA), Dallas (TX), Washington DC ... Thorough understanding of network protocols and cyber-security fundamentals is required * Bachelor ...
Penetration Tester
Los Angeles, CA · On-site
Position : Penetration Tester Locations: Los Angeles( CA), Dallas (TX), Washington DC ... Thorough understanding of network protocols and cyber-security fundamentals is required * Bachelor ...
Cyber Security Penetration information
See salary details
$40.5K - $53.2K
0% of jobs
$53.2K - $65.9K
0% of jobs
$65.9K - $78.5K
4% of jobs
$78.5K - $91.2K
9% of jobs
$103.4K is the 25th percentile. Wages below this are outliers.
$91.2K - $103.9K
13% of jobs
$103.9K - $116.6K
20% of jobs
The median wage is $120K / yr.
$116.6K - $129.3K
16% of jobs
$139.2K is the 75th percentile. Wages above this are outliers.
$129.3K - $142K
17% of jobs
$142K - $154.6K
12% of jobs
$154.6K - $167.3K
6% of jobs
$167.3K - $180K
3% of jobs
$40.5K
$122.9K
$180K
How much do cyber security penetration jobs pay per year?
What are the key skills and qualifications needed to thrive as a Cyber Security Penetration Tester, and why are they important?
What is a Cyber Security Penetration Tester?
What is the difference between Cyber Security Penetration vs Cyber Security Analyst?
| Aspect | Cyber Security Penetration | Cyber Security Analyst |
|---|---|---|
| Certifications | OSCP, CEH, GPEN | CISSP, Security+, CEH |
| Work Environment | Simulated attacks, offensive security | Monitoring, incident response, defense |
| Employer Usage | Penetration testing firms, security consultancies | In-house security teams, organizations |
Cyber Security Penetration specialists focus on identifying vulnerabilities through simulated attacks, while Cyber Security Analysts monitor and defend against threats. Both roles require similar certifications but differ in their primary focus: offensive testing versus defensive analysis.
What are some common challenges faced by cyber security penetration testers during assessments?
- Overnight Cybersecurity Penetration Tester
- Ethical Penetration Testing
- Pnpt
- Penetration Testing Engineer
- Temporary Cybersecurity Penetration Tester
- Htb Cpts
- Home Based Penetration Tester Red Team
- Senior International Penetration Tester
- Penetration Testers
- Giac Exploit Researcher And Advanced Penetration Tester

Full-time
Posted 28 days ago
Fidelity Investments rating
8.7
Based on 266 frontline employees who took The Breakroom Quiz
17th of 148 rated financial services
Job description
Position Description:
Performs security assessments of applications prior to production deployment using Static Code Analysis, dynamic testing tools, and manual techniques. Assists in establishing the strategy, policy, and standards of security for cybersecurity operations. Develop custom Python scripts to automate repetitive tasks. Defends enterprise against attacks, damage, and unauthorized access to information, data, and systems. Ensures threat and vulnerability reduction, deterrence, incident response, resiliency, and recovery policies and activities are up to date. Proactively identifies vulnerabilities in proprietary applications prior to production release and remediates identified vulnerabilities to prevent real-life cyberattacks.
Primary Responsibilities:
- Performs advanced Web application source code auditing.
- Analyzes codes, writes scripts, and exploits web vulnerabilities.
- Analyzes test results, draw conclusions from results.
- Identifies vulnerabilities by performing thorough evaluations of security vulnerabilities on Web and mobile applications.
- Collaborates with application developers to mitigate risk and improve security posture.
- Performs security testing on web and mobile applications to support production releases.
- Models potential external threats by replicating the techniques and tools used by malicious attackers.
- Prepares reports on completed assessments and present results to application owners, developers, and business unit information security teams.
- Consults with operations and software development teams to ensure potential weaknesses are addressed.
- Contributes to the research and development of tools to assist in the vulnerability discovery process.
- Keeps abreast of current cybersecurity best practices and vulnerabilities.
- Conducts peer reviews to facilitate continuous improvement across the team.
Education and Experience:
Bachelor's degree in Computer Science, Engineering, Information Technology, Information Systems, or a closely related field (or foreign education equivalent) and five (5) years of experience as a Principal, Cybersecurity Penetration Tester (or closely related occupation) performing black and white box testing to protect against cyber threats and ensure application security (web, mobile, API, and thick client).
Or, alternatively, Master's degree in Computer Science, Engineering, Information Technology, Information Systems, or a closely related field (or foreign education equivalent) and three (3) years of experience as a Principal, Cybersecurity Penetration Tester (or closely related occupation) performing black and white box testing to protect against cyber threats and ensure application security (web, mobile, API, and thick client).
Skills and Knowledge:
Candidate must also possess:
- Demonstrated Expertise ("DE") estimating risks on security flaws uncovered during static or dynamic analysis in line with the OWASP testing guide; conducting pen-testing on applications to uncover security vulnerabilities - Injection attacks, Server-side attacks, Privilege escalation, GraphQL batching attacks, or JWT signature manipulation attacks - using BurpSuite Professional Edition, Fiddler, Kali Linux, and SQLMap.
- DE analyzing source code for security weaknesses, writing custom scripts, exploiting security vulnerabilities, and conducting retests to determine mitigation measures implemented by development teams, through a combination of manual analysis by using BurpSuite Professional, and automated scans using GitHub Advanced Security(GHAS) and MEND.
- DE analyzing Common Vulnerability Exposure (CVE) on third party libraries, using Veracode SCA, MEND, Exploit-DB, and NVD databases; and coordinating actions associated with the dismissal or reopening of policy violation alerts related to security, licensing, and coding standards using GitHub Advanced Security (GHAS).
- DE crafting custom scripts to effectively automate labor-intensive manual tasks (logging security findings, preparing weekly status reports, verifying artifact correctness) and empower the efficient allocation of resources, enhancing the overall security assessment process, using Python or Selenium.
#PE1M2
#LI-DNI
Certifications:Category:Information TechnologyPlease be advised that Fidelity's business is governed by the provisions of the Securities Exchange Act of 1934, the Investment Advisers Act of 1940, the Investment Company Act of 1940, ERISA, numerous state laws governing securities, investment and retirement-related financial activities and the rules and regulations of numerous self-regulatory organizations, including FINRA, among others. Those laws and regulations may restrict Fidelity from hiring and/or associating with individuals with certain Criminal Histories.
What Fidelity Investments employees say
Pay
Benefits
Hours and flexibility
Workplace
Get the full story on Breakroom
About Fidelity
Sourced by ZipRecruiter