... Cybersecurity Penetration Tester (or closely related occupation) performing black and white box testing to protect against cyber threats and ensure application security (web, mobile, API, and thick ...
... Cybersecurity Penetration Tester (or closely related occupation) performing black and white box testing to protect against cyber threats and ensure application security (web, mobile, API, and thick ...
... Cybersecurity Penetration Tester (or closely related occupation) performing black and white box testing to protect against cyber threats and ensure application security (web, mobile, API, and thick ...
... Cybersecurity Penetration Tester (or closely related occupation) performing black and white box testing to protect against cyber threats and ensure application security (web, mobile, API, and thick ...
Job Title Cybersecurity Penetration Tester As a member of the Elliott Davis Digital Cyber team, you will be responsible for having an in-depth knowledge of ethical hacking techniques and ...
Job Title Cybersecurity Penetration Tester As a member of the Elliott Davis Digital Cyber team, you will be responsible for having an in-depth knowledge of ethical hacking techniques and ...
Job Title Cybersecurity Penetration Tester As a member of the Elliott Davis Digital Cyber team, you will be responsible for having an in-depth knowledge of ethical hacking techniques and ...
Job Title Cybersecurity Penetration Tester As a member of the Elliott Davis Digital Cyber team, you will be responsible for having an in-depth knowledge of ethical hacking techniques and ...
Job Title Cybersecurity Penetration Tester As a member of the Elliott Davis Digital Cyber team, you will be responsible for having an in-depth knowledge of ethical hacking techniques and ...
Job Title Cybersecurity Penetration Tester As a member of the Elliott Davis Digital Cyber team, you will be responsible for having an in-depth knowledge of ethical hacking techniques and ...
Job Title Cybersecurity Penetration Tester As a member of the Elliott Davis Digital Cyber team, you will be responsible for having an in-depth knowledge of ethical hacking techniques and ...
Job Title Cybersecurity Penetration Tester As a member of the Elliott Davis Digital Cyber team, you will be responsible for having an in-depth knowledge of ethical hacking techniques and ...
Cyber Security Penetration Testing Specialist ProSidian Seeks a Cyber Security Penetration Testing Specialist in CONUS - Mid Atlantic Washington Metropolitan Area (Northern Virginia | Washington DC ...
Cyber Security Penetration Testing Specialist ProSidian Seeks a Cyber Security Penetration Testing Specialist in CONUS - Mid Atlantic Washington Metropolitan Area (Northern Virginia | Washington DC ...
Penetration Tester
Rex, GA · On-site
Penetration Tester - Intermediate Under general supervision, perform penetration testing of ... Assess enterprise systems using offensive cybersecurity techniques and provide actionable ...
Penetration Tester
Rex, GA · On-site
Penetration Tester - Intermediate Under general supervision, perform penetration testing of ... Assess enterprise systems using offensive cybersecurity techniques and provide actionable ...
Penetration Tester
Merrimack, NH · On-site
Penetration Tester - Intermediate Under general supervision, perform penetration testing of ... Assess enterprise systems using offensive cybersecurity techniques and provide actionable ...
Penetration Tester
Merrimack, NH · On-site
Penetration Tester - Intermediate Under general supervision, perform penetration testing of ... Assess enterprise systems using offensive cybersecurity techniques and provide actionable ...
Penetration Tester
San Antonio, TX · On-site
Penetration Tester - Intermediate Under general supervision, perform penetration testing of ... Assess enterprise systems using offensive cybersecurity techniques and provide actionable ...
Penetration Tester
San Antonio, TX · On-site
Penetration Tester - Intermediate Under general supervision, perform penetration testing of ... Assess enterprise systems using offensive cybersecurity techniques and provide actionable ...
Penetration Tester
Lansing, MI · On-site
Penetration Tester - Intermediate Under general supervision, perform penetration testing of ... Assess enterprise systems using offensive cybersecurity techniques and provide actionable ...
Penetration Tester
Lansing, MI · On-site
Penetration Tester - Intermediate Under general supervision, perform penetration testing of ... Assess enterprise systems using offensive cybersecurity techniques and provide actionable ...
Penetration Tester
Paradise Valley, AZ · On-site
Penetration Tester - Intermediate Under general supervision, perform penetration testing of ... Assess enterprise systems using offensive cybersecurity techniques and provide actionable ...
Penetration Tester
Paradise Valley, AZ · On-site
Penetration Tester - Intermediate Under general supervision, perform penetration testing of ... Assess enterprise systems using offensive cybersecurity techniques and provide actionable ...
Penetration Tester
Clackamas, OR · On-site
Penetration Tester - Intermediate Under general supervision, perform penetration testing of ... Assess enterprise systems using offensive cybersecurity techniques and provide actionable ...
Penetration Tester
Clackamas, OR · On-site
Penetration Tester - Intermediate Under general supervision, perform penetration testing of ... Assess enterprise systems using offensive cybersecurity techniques and provide actionable ...
Penetration Tester
Salt Lake City, UT · On-site
Penetration Tester - Intermediate Under general supervision, perform penetration testing of ... Assess enterprise systems using offensive cybersecurity techniques and provide actionable ...
Penetration Tester
Salt Lake City, UT · On-site
Penetration Tester - Intermediate Under general supervision, perform penetration testing of ... Assess enterprise systems using offensive cybersecurity techniques and provide actionable ...
Penetration Tester
Pensacola, FL · On-site
Penetration Tester - Intermediate Under general supervision, perform penetration testing of ... Assess enterprise systems using offensive cybersecurity techniques and provide actionable ...
Penetration Tester
Pensacola, FL · On-site
Penetration Tester - Intermediate Under general supervision, perform penetration testing of ... Assess enterprise systems using offensive cybersecurity techniques and provide actionable ...
Penetration Tester
Homewood, AL · On-site
Penetration Tester - Intermediate Under general supervision, perform penetration testing of ... Assess enterprise systems using offensive cybersecurity techniques and provide actionable ...
Penetration Tester
Homewood, AL · On-site
Penetration Tester - Intermediate Under general supervision, perform penetration testing of ... Assess enterprise systems using offensive cybersecurity techniques and provide actionable ...
Penetration Tester
Kings Mills, OH · On-site
Penetration Tester - Intermediate Under general supervision, perform penetration testing of ... Assess enterprise systems using offensive cybersecurity techniques and provide actionable ...
Penetration Tester
Kings Mills, OH · On-site
Penetration Tester - Intermediate Under general supervision, perform penetration testing of ... Assess enterprise systems using offensive cybersecurity techniques and provide actionable ...
Penetration Tester
Augusta, ME · On-site
Penetration Tester - Intermediate Under general supervision, perform penetration testing of ... Assess enterprise systems using offensive cybersecurity techniques and provide actionable ...
Penetration Tester
Augusta, ME · On-site
Penetration Tester - Intermediate Under general supervision, perform penetration testing of ... Assess enterprise systems using offensive cybersecurity techniques and provide actionable ...
Penetration Tester
Richmond, VA · On-site
Penetration Tester - Intermediate Under general supervision, perform penetration testing of ... Assess enterprise systems using offensive cybersecurity techniques and provide actionable ...
Penetration Tester
Richmond, VA · On-site
Penetration Tester - Intermediate Under general supervision, perform penetration testing of ... Assess enterprise systems using offensive cybersecurity techniques and provide actionable ...
Enterprise Cybersecurity Penetration Tester and Operator, Mid
Mclean, VA · On-site
$62K - $141K/yr
Share Enterprise Cybersecurity Penetration Tester and Operator, Mid The Opportunity: As a member of the Booz Allen internal Red Team, you'll lead enterprise and system-focused network and penetration ...
Enterprise Cybersecurity Penetration Tester and Operator, Mid
Mclean, VA · On-site
$62K - $141K/yr
Share Enterprise Cybersecurity Penetration Tester and Operator, Mid The Opportunity: As a member of the Booz Allen internal Red Team, you'll lead enterprise and system-focused network and penetration ...
Cybersecurity Penetration Tester information
See salary details
$22.5K - $35.8K
0% of jobs
$35.8K - $49K
0% of jobs
$49K - $62.3K
2% of jobs
$62.3K - $75.6K
3% of jobs
$75.6K - $88.9K
1% of jobs
$101.1K is the 25th percentile. Wages below this are outliers.
$88.9K - $102.1K
20% of jobs
$102.1K - $115.4K
14% of jobs
The median wage is $120.4K / yr.
$115.4K - $128.7K
26% of jobs
$138.1K is the 75th percentile. Wages above this are outliers.
$128.7K - $142K
13% of jobs
$142K - $155.2K
13% of jobs
$155.2K - $168.5K
9% of jobs
$22.5K
$119.9K
$168.5K
How much do cybersecurity penetration tester jobs pay per year?
What are the key skills and qualifications needed to thrive in the Cybersecurity Penetration Tester position, and why are they important?
To thrive as a Cybersecurity Penetration Tester, you need strong knowledge of network security, vulnerability assessment methodologies, and experience with operating systems and programming, often supported by a degree in computer science or related certifications. Familiarity with tools like Metasploit, Burp Suite, Nmap, and certifications such as OSCP or CEH is highly valued. Excellent analytical thinking, attention to detail, and clear communication set top performers apart in this role. These skills and qualities are essential to effectively identify security gaps, deliver actionable insights, and collaborate with teams to enhance organizational defenses.
How much do cyber security penetration testers make?
Is 30 too late for cyber security?
What is a Cybersecurity Penetration Tester job?
A Cybersecurity Penetration Tester, or ethical hacker, is responsible for assessing an organization's security by simulating cyberattacks to identify vulnerabilities. They use various tools and techniques to exploit weaknesses in networks, applications, and systems before malicious hackers can. Their findings help improve security defenses by recommending remediation measures. Penetration testers often work with security teams to ensure compliance with industry standards and best practices.
Will pentesters be replaced by AI?
What does a typical workday look like for a Cybersecurity Penetration Tester?
A typical day for a Cybersecurity Penetration Tester involves planning and executing simulated cyberattacks on applications, networks, and systems to identify vulnerabilities. You will document findings, create detailed reports for technical and non-technical stakeholders, and often collaborate with IT, security, and development teams to consult on mitigation strategies. While the job can involve independent testing, it frequently requires teamwork during project scoping and debrief sessions. Expect a mix of structured tasks and dynamic problem-solving, as new security threats and client needs often shift priorities. This variety makes the role both challenging and rewarding for those who enjoy solving complex security puzzles.
Can you make $500,000 a year in cyber security?
- Penetration Tester Ethical Hacker
- Giac Exploit Researcher And Advanced Penetration Tester
- Entry Level Cybersecurity Penetration Tester
- Penetration Testing Engineer
- Penetration Testers
- Senior International Penetration Tester
- Internship Penetration Tester Ethical Hacker
- Remote Htb Cpts
- Physical Penetration Tester
- Full Time International Penetration Tester

Full-time
Posted 18 days ago
Fidelity Investments rating
8.7
Based on 266 frontline employees who took The Breakroom Quiz
16th of 146 rated financial services
Job description
Position Description:
Performs security assessments of applications prior to production deployment using Static Code Analysis, dynamic testing tools, and manual techniques. Assists in establishing the strategy, policy, and standards of security for cybersecurity operations. Develop custom Python scripts to automate repetitive tasks. Defends enterprise against attacks, damage, and unauthorized access to information, data, and systems. Ensures threat and vulnerability reduction, deterrence, incident response, resiliency, and recovery policies and activities are up to date. Proactively identifies vulnerabilities in proprietary applications prior to production release and remediates identified vulnerabilities to prevent real-life cyberattacks.
Primary Responsibilities:
- Performs advanced Web application source code auditing.
- Analyzes codes, writes scripts, and exploits web vulnerabilities.
- Analyzes test results, draw conclusions from results.
- Identifies vulnerabilities by performing thorough evaluations of security vulnerabilities on Web and mobile applications.
- Collaborates with application developers to mitigate risk and improve security posture.
- Performs security testing on web and mobile applications to support production releases.
- Models potential external threats by replicating the techniques and tools used by malicious attackers.
- Prepares reports on completed assessments and present results to application owners, developers, and business unit information security teams.
- Consults with operations and software development teams to ensure potential weaknesses are addressed.
- Contributes to the research and development of tools to assist in the vulnerability discovery process.
- Keeps abreast of current cybersecurity best practices and vulnerabilities.
- Conducts peer reviews to facilitate continuous improvement across the team.
Education and Experience:
Bachelor's degree in Computer Science, Engineering, Information Technology, Information Systems, or a closely related field (or foreign education equivalent) and five (5) years of experience as a Principal, Cybersecurity Penetration Tester (or closely related occupation) performing black and white box testing to protect against cyber threats and ensure application security (web, mobile, API, and thick client).
Or, alternatively, Master's degree in Computer Science, Engineering, Information Technology, Information Systems, or a closely related field (or foreign education equivalent) and three (3) years of experience as a Principal, Cybersecurity Penetration Tester (or closely related occupation) performing black and white box testing to protect against cyber threats and ensure application security (web, mobile, API, and thick client).
Skills and Knowledge:
Candidate must also possess:
- Demonstrated Expertise ("DE") estimating risks on security flaws uncovered during static or dynamic analysis in line with the OWASP testing guide; conducting pen-testing on applications to uncover security vulnerabilities - Injection attacks, Server-side attacks, Privilege escalation, GraphQL batching attacks, or JWT signature manipulation attacks - using BurpSuite Professional Edition, Fiddler, Kali Linux, and SQLMap.
- DE analyzing source code for security weaknesses, writing custom scripts, exploiting security vulnerabilities, and conducting retests to determine mitigation measures implemented by development teams, through a combination of manual analysis by using BurpSuite Professional, and automated scans using GitHub Advanced Security(GHAS) and MEND.
- DE analyzing Common Vulnerability Exposure (CVE) on third party libraries, using Veracode SCA, MEND, Exploit-DB, and NVD databases; and coordinating actions associated with the dismissal or reopening of policy violation alerts related to security, licensing, and coding standards using GitHub Advanced Security (GHAS).
- DE crafting custom scripts to effectively automate labor-intensive manual tasks (logging security findings, preparing weekly status reports, verifying artifact correctness) and empower the efficient allocation of resources, enhancing the overall security assessment process, using Python or Selenium.
#PE1M2
#LI-DNI
Certifications:Category:Information TechnologyPlease be advised that Fidelity's business is governed by the provisions of the Securities Exchange Act of 1934, the Investment Advisers Act of 1940, the Investment Company Act of 1940, ERISA, numerous state laws governing securities, investment and retirement-related financial activities and the rules and regulations of numerous self-regulatory organizations, including FINRA, among others. Those laws and regulations may restrict Fidelity from hiring and/or associating with individuals with certain Criminal Histories.
What Fidelity Investments employees say
Pay
Benefits
Hours and flexibility
Workplace
Get the full story on Breakroom
About Fidelity
Sourced by ZipRecruiter