ZipRecruiter

Log In

1

Dast Tester Jobs (NOW HIRING)

MM International

Penetration Tester

San Francisco, CA · On-site

Looking for an experienced Penetration Tester with strong skills in VAPT for Web, API, and Thick-Client applications , along with SAST/DAST expertise. The role involves performing manual and ...

Omni Inclusive

Penetration Tester

Cary, NC

... on penetration testing and online application security Worked extensively on Web & Mobile ... Worked on SAST and DAST Tools for Web and Mobile Source Code Review Simulating real-world ...

Xtreme Solutions Corporate

MI · On-site

Description: Position Summary The Senior Web Application Penetration Tester performs security ... Experience with SAST/DAST tools. * FedRAMP assessment experience.

Purple Drive

Penetration Testing

Santa Clara, CA

Role: Penetration Testing / Security Test Engineer Location: Santa Clara, CA Role Summary The ... The position also provides platform administration and analytics support for SAST, DAST, SCA, and ...

Monitise

Senior Penetration Tester

Frisco, TX

Job Title Senior Penetration Tester About your role: At Fiserv, we deliver technology solutions ... Hands-on experience with SAST/DAST/SCA platforms (e.g., Veracode, Checkmarx, Fortify) and ...

Monitise

Senior Penetration Tester

Columbus, OH · On-site

Job Title Senior Penetration Tester About your role: At Fiserv, we deliver technology solutions ... Hands-on experience with SAST/DAST/SCA platforms (e.g., Veracode, Checkmarx, Fortify) and ...

Monitise

Senior Penetration Tester

Omaha, NE

Job Title Senior Penetration Tester About your role: At Fiserv, we deliver technology solutions ... Hands-on experience with SAST/DAST/SCA platforms (e.g., Veracode, Checkmarx, Fortify) and ...

Monitise

Senior Penetration Tester

Alpharetta, GA · On-site

Job Title Senior Penetration Tester About your role: At Fiserv, we deliver technology solutions ... Hands-on experience with SAST/DAST/SCA platforms (e.g., Veracode, Checkmarx, Fortify) and ...

next page

Showing results 1-20

All JobsDast Tester Jobs

Dast Tester information

See salary details

$10

$38

$62

How much do dast tester jobs pay per hour?

As of Jun 15, 2026, the average hourly pay for dast tester in the United States is $38.36, according to ZipRecruiter salary data. Most workers in this role earn between $21.39 and $50.72 per hour, depending on experience, location, and employer.

What are DAST testers?

DAST testers are professionals who use Dynamic Application Security Testing (DAST) tools to identify vulnerabilities in web applications while they are running. Unlike static testing, which examines code without executing it, DAST testers simulate real-world attacks to find security flaws from the outside in, much like a hacker would. Their primary goal is to detect and help remediate issues such as SQL injection, cross-site scripting (XSS), and other security threats before malicious actors can exploit them. DAST testers work closely with development and security teams to ensure applications are secure throughout the software development lifecycle.

What are the key skills and qualifications needed to thrive as a DAST Tester, and why are they important?

To thrive as a DAST Tester, you need a solid understanding of web application security, common vulnerabilities (such as those in the OWASP Top 10), and experience in penetration testing, often supported by a degree in computer science or a related field. Familiarity with Dynamic Application Security Testing (DAST) tools like OWASP ZAP, Burp Suite, or Acunetix, as well as relevant certifications such as CEH or OSCP, is typically required. Analytical thinking, attention to detail, and strong communication skills help DAST Testers identify risks and clearly report findings to stakeholders. These skills are critical to ensuring robust application security and safeguarding organizations from cyber threats.

What is the difference between Dast Tester vs Manual Tester?

AspectDast TesterManual Tester
CertificationsISTQB, Certified Ethical Hacker (CEH)ISTQB, ISTQB Foundation
Work EnvironmentAutomated testing tools, CI/CD pipelinesTest case execution, defect reporting
Industry UsageSoftware development, DevOps teamsQuality assurance, software testing teams

While Dast Testers focus on automated security testing using tools like OWASP ZAP or Burp Suite, Manual Testers perform hands-on testing without automation. Both roles are essential in software quality assurance, but Dast Testers emphasize automation and security, whereas Manual Testers focus on detailed, exploratory testing.

What are the best DAST tools?

For a DAST (Dynamic Application Security Testing) tester, popular tools include OWASP ZAP, Burp Suite, and Acunetix, which are widely used for identifying security vulnerabilities in web applications. Proficiency with these tools, along with understanding of security testing methodologies, enhances effectiveness in the role.

What is the difference between DAST and Pentesting?

A DAST (Dynamic Application Security Testing) tester focuses on identifying security vulnerabilities in running applications through automated scanning, while penetration testing (pentesting) involves manual, in-depth attempts to exploit vulnerabilities to assess overall security. Both require knowledge of security tools and techniques but differ in scope and approach, with pentesting typically being more comprehensive and targeted. DAST is often part of a broader security assessment process, whereas pentesting may include social engineering and physical security testing as well.

What is DAST in pentesting?

In penetration testing, DAST (Dynamic Application Security Testing) is a method that analyzes running web applications to identify security vulnerabilities by simulating attacks. DAST tools, such as OWASP ZAP or Burp Suite, are commonly used by security professionals to evaluate application security without access to source code.

What does a DAST tool do?

A DAST (Dynamic Application Security Testing) tool is used by security professionals and testers to identify vulnerabilities in running web applications by simulating attacks and analyzing responses. It helps detect security flaws such as SQL injection, cross-site scripting, and other runtime issues, often integrating into security testing workflows and requiring knowledge of web security principles.

What are the typical challenges faced by a DAST Tester when integrating dynamic application security testing into the CI/CD pipeline?

A common challenge for DAST Testers is ensuring that security tests fit seamlessly into the existing CI/CD workflow without causing significant delays in deployment. Dynamic testing can sometimes result in false positives or require fine-tuning to accurately simulate real-world attacks, which may demand close collaboration with developers and DevOps teams. Effective communication is key, as DAST Testers often need to help interpret results and prioritize remediation of vulnerabilities. Balancing comprehensive security coverage with development speed is crucial to maintaining both secure and agile delivery cycles.
More about Dast Tester jobs
What cities are hiring for Dast Tester jobs? Cities with the most Dast Tester job openings:
What states have the most Dast Tester jobs? States with the most job openings for Dast Tester jobs include:
What job categories do people searching Dast Tester jobs look for? The top searched job categories for Dast Tester jobs are:
Dast Tester jobs near you
Infographic showing various Dast Tester job openings in the United States as of June 2026, with employment types broken down into 26% Full Time, 64% Part Time, and 10% Contract. Highlights an 59% Physical, 1% Hybrid, and 40% Remote job distribution, with an average salary of $79,791 per year, or $38.4 per hour.

DevSecOps Engineer (SAST/DAST)

Cognize Tech Solutions LLC

Reston, VA • On-site

Contractor

Posted 11 days ago

Job description

Job Title: DevSecOps Engineer (SAST/DAST)
Location: Reston, VA (Onsite)

Job Summary:
  • Seeking a DevSecOps Engineer to integrate and automate SAST (e.g., SonarQube, Checkmarx) and DAST (e.g., OWASP ZAP, Burp Suite) tools into CI/CD pipelines, ensuring secure code and application runtime protection.
Key Responsibilities:
  • Automate SAST and DAST in CI/CD workflows.
  • Collaborate with teams to remediate vulnerabilities.
  • Streamline security testing and reporting.
Required Skills:
  • Experience with SAST/DAST tools and CI/CD pipelines.
  • Proficiency in scripting (Python, Bash).
  • Knowledge of secure coding practices.