Web Application Penetration Testing Ampcus Inc. is a certified global provider of a broad range of Technology and Business consulting services. We are in search of a highly motivated candidate to ...
Web Application Penetration Testing Ampcus Inc. is a certified global provider of a broad range of Technology and Business consulting services. We are in search of a highly motivated candidate to ...
NIH - Penetration Tester
Bethesda, MD · Remote
Experience performing enterprise penetration testing. * Experience with network and application security assessments. * Experience documenting technical security findings. * Ability to obtain and ...
Quick apply
NIH - Penetration Tester
Bethesda, MD · Remote
Experience performing enterprise penetration testing. * Experience with network and application security assessments. * Experience documenting technical security findings. * Ability to obtain and ...
Penetration Tester
Cary, NC · On-site
Client Webinspect and HCL Appscan preferred - any other tools is OK as well Minimum 7 years of experience Work with enterprise programs on penetration testing and online application security Worked ...
Penetration Tester
Cary, NC · On-site
Client Webinspect and HCL Appscan preferred - any other tools is OK as well Minimum 7 years of experience Work with enterprise programs on penetration testing and online application security Worked ...
Penetration Tester
Reston, VA · On-site
Coordinate penetration testing activities and schedules with internal stakeholders, system owners, and external partners as required. * Perform network vulnerability assessments and exploitation ...
Penetration Tester
Reston, VA · On-site
Coordinate penetration testing activities and schedules with internal stakeholders, system owners, and external partners as required. * Perform network vulnerability assessments and exploitation ...
Coordinate penetration testing activities and schedules with internal stakeholders, system owners, and external partners as required. * Perform network vulnerability assessments and exploitation ...
Coordinate penetration testing activities and schedules with internal stakeholders, system owners, and external partners as required. * Perform network vulnerability assessments and exploitation ...
Penetration Tester
Chantilly, VA · On-site
$90K - $130K/yr
Conduct penetration testing that uses both active and passive capabilities to expose and exploit IA vulnerabilities. * Review and evaluate information systems and recommend changes to the Government ...
Penetration Tester
Chantilly, VA · On-site
$90K - $130K/yr
Conduct penetration testing that uses both active and passive capabilities to expose and exploit IA vulnerabilities. * Review and evaluate information systems and recommend changes to the Government ...
Penetration Tester
Chantilly, VA · On-site
$90K - $130K/yr
Conduct penetration testing that uses both active and passive capabilities to expose and exploit IA vulnerabilities. * Review and evaluate information systems and recommend changes to the Government ...
Penetration Tester
Chantilly, VA · On-site
$90K - $130K/yr
Conduct penetration testing that uses both active and passive capabilities to expose and exploit IA vulnerabilities. * Review and evaluate information systems and recommend changes to the Government ...
Penetration Tester
Chantilly, VA · On-site
$90K - $130K/yr
Conduct penetration testing that uses both active and passive capabilities to expose and exploit IA vulnerabilities. * Review and evaluate information systems and recommend changes to the Government ...
Quick apply
Penetration Tester
Chantilly, VA · On-site
$90K - $130K/yr
Conduct penetration testing that uses both active and passive capabilities to expose and exploit IA vulnerabilities. * Review and evaluate information systems and recommend changes to the Government ...
Penetration Tester
$92.30/hr
Title: Penetration Tester Job ID: 26-03154 Location: Remote Duration: 12 Months on W2 contract ... Web Application, API, and Infrastructure Security Testing * Vulnerability Assessment & Remediation ...
Penetration Tester
$92.30/hr
Title: Penetration Tester Job ID: 26-03154 Location: Remote Duration: 12 Months on W2 contract ... Web Application, API, and Infrastructure Security Testing * Vulnerability Assessment & Remediation ...
Penetration Testing Manager
Berwyn, PA · On-site
$140K - $222K/yr
Manager, Penetration Testing We are seeking a Manager to lead State Street's Penetration Testing Team, reporting into leadership within the Threat Intelligence and Assurance function. This role ...
Penetration Testing Manager
Berwyn, PA · On-site
$140K - $222K/yr
Manager, Penetration Testing We are seeking a Manager to lead State Street's Penetration Testing Team, reporting into leadership within the Threat Intelligence and Assurance function. This role ...
Penetration Tester
Arlington, VA · On-site
Minimum of 2 years with penetration testing experience. * Possess one of the following certifications, OR be able to obtain before start date: * CCNA Cyber Ops, CCNA-Security, CEH, CFR, Cloud+, CySA ...
Penetration Tester
Arlington, VA · On-site
Minimum of 2 years with penetration testing experience. * Possess one of the following certifications, OR be able to obtain before start date: * CCNA Cyber Ops, CCNA-Security, CEH, CFR, Cloud+, CySA ...
Penetration Tester
Arlington, VA · On-site
$86K - $138K/yr
Minimum of 2 years with penetration testing experience. * Possess one of the following certifications, OR be able to obtain before start date: * CCNA Cyber Ops, CCNA-Security, CEH, CFR, Cloud+, CySA ...
Penetration Tester
Arlington, VA · On-site
$86K - $138K/yr
Minimum of 2 years with penetration testing experience. * Possess one of the following certifications, OR be able to obtain before start date: * CCNA Cyber Ops, CCNA-Security, CEH, CFR, Cloud+, CySA ...
Penetration Tester
$95K - $112K/yr
Minimum of 2 years with penetration testing experience. * Possess one of the following certifications, OR be able to obtain before start date: * CCNA Cyber Ops, CCNA-Security, CEH, CFR, Cloud+, CySA ...
Quick apply
Penetration Tester
$95K - $112K/yr
Minimum of 2 years with penetration testing experience. * Possess one of the following certifications, OR be able to obtain before start date: * CCNA Cyber Ops, CCNA-Security, CEH, CFR, Cloud+, CySA ...
Penetration Tester
Arlington, VA · On-site
$86K - $138K/yr
Minimum of 2 years with penetration testing experience. * Possess one of the following certifications, OR be able to obtain before start date: * CCNA Cyber Ops, CCNA-Security, CEH, CFR, Cloud+, CySA ...
Penetration Tester
Arlington, VA · On-site
$86K - $138K/yr
Minimum of 2 years with penetration testing experience. * Possess one of the following certifications, OR be able to obtain before start date: * CCNA Cyber Ops, CCNA-Security, CEH, CFR, Cloud+, CySA ...
Penetration Tester
Arlington, VA · On-site
$95K - $112K/yr
Minimum of 2 years with penetration testing experience. * Possess one of the following certifications, OR be able to obtain before start date: * CCNA Cyber Ops, CCNA-Security, CEH, CFR, Cloud+, CySA ...
Penetration Tester
Arlington, VA · On-site
$95K - $112K/yr
Minimum of 2 years with penetration testing experience. * Possess one of the following certifications, OR be able to obtain before start date: * CCNA Cyber Ops, CCNA-Security, CEH, CFR, Cloud+, CySA ...
Penetration Tester
$86K - $138K/yr
Minimum of 2 years with penetration testing experience. * Possess one of the following certifications, OR be able to obtain before start date: * CCNA Cyber Ops, CCNA-Security, CEH, CFR, Cloud+, CySA ...
Penetration Tester
$86K - $138K/yr
Minimum of 2 years with penetration testing experience. * Possess one of the following certifications, OR be able to obtain before start date: * CCNA Cyber Ops, CCNA-Security, CEH, CFR, Cloud+, CySA ...
Penetration Testing Manager
Clifton, NJ · On-site
$140K - $222K/yr
Manager, Penetration Testing We are seeking a Manager to lead State Street's Penetration Testing Team, reporting into leadership within the Threat Intelligence and Assurance function. This role ...
Penetration Testing Manager
Clifton, NJ · On-site
$140K - $222K/yr
Manager, Penetration Testing We are seeking a Manager to lead State Street's Penetration Testing Team, reporting into leadership within the Threat Intelligence and Assurance function. This role ...
Penetration Tester
Basking Ridge, NJ · On-site
Must Have Skills: • Penetration Testing • Burp Suit • Wireshark Detailed • Experienced & Hands on Penetration tester (preferably with CEH certification) with experience in both web & mobile ...
Penetration Tester
Basking Ridge, NJ · On-site
Must Have Skills: • Penetration Testing • Burp Suit • Wireshark Detailed • Experienced & Hands on Penetration tester (preferably with CEH certification) with experience in both web & mobile ...
Senior Penetration Tester
$90K - $150K/yr
Performs application and network penetration testing and wireless security assessments. * Applies offensive cybersecurity testing techniques, coordinate testing projects with internal and external ...
Senior Penetration Tester
$90K - $150K/yr
Performs application and network penetration testing and wireless security assessments. * Applies offensive cybersecurity testing techniques, coordinate testing projects with internal and external ...
Penetration Tester
Washington, DC · On-site
$126K - $243K/yr
This role will unify penetration-testing activities across network, application, and cloud environments, ensuring consistent execution, standardized reporting, and alignment with enterprise security ...
Penetration Tester
Washington, DC · On-site
$126K - $243K/yr
This role will unify penetration-testing activities across network, application, and cloud environments, ensuring consistent execution, standardized reporting, and alignment with enterprise security ...
Penetration Testing information
See salary details
$22.5K - $35.8K
0% of jobs
$35.8K - $49K
0% of jobs
$49K - $62.3K
2% of jobs
$62.3K - $75.6K
3% of jobs
$75.6K - $88.9K
1% of jobs
$101.1K is the 25th percentile. Wages below this are outliers.
$88.9K - $102.1K
20% of jobs
$102.1K - $115.4K
14% of jobs
The median wage is $120.4K / yr.
$115.4K - $128.7K
26% of jobs
$138.1K is the 75th percentile. Wages above this are outliers.
$128.7K - $142K
13% of jobs
$142K - $155.2K
13% of jobs
$155.2K - $168.5K
9% of jobs
$22.5K
$119.9K
$168.5K
How much do penetration testing jobs pay per year?
What are some common challenges faced by penetration testers during client engagements?
Will AI replace pentesters?
Is penetration tester a good career?
Can I make $200,000 a year in cyber security?
What is the difference between Penetration Testing vs Vulnerability Assessment?
| Aspect | Penetration Testing | Vulnerability Assessment |
|---|---|---|
| Purpose | Simulate cyberattacks to identify exploitable vulnerabilities | Identify and prioritize security weaknesses |
| Depth | In-depth, targeted testing | Broad, comprehensive scanning |
| Certifications | OSCP, CEH, GPEN | OSCP, CEH, Security+ |
| Work Environment | Hands-on testing, simulated attacks | Automated scans, reports |
While both roles focus on security weaknesses, Penetration Testing involves actively exploiting vulnerabilities to assess real-world impact, whereas Vulnerability Assessment identifies potential issues for prioritization. Penetration Testing provides a deeper, more targeted security evaluation, making it essential for comprehensive security testing.
What is penetration testing?
How much do penetration testers make?

Job description
Ampcus Inc. is a certified global provider of a broad range of Technology and Business consulting services. We are in search of a highly motivated candidate to join our talented team. Location: Chantilly, VA. Position Overview:
We are seeking an experienced and results-driven Penetration Tester to support them in performing comprehensive web application security assessments as part of the Web Application Penetration Testing opportunity. The ideal candidate will have a deep understanding of web application security, vulnerability assessment, and threat exploitation methodologies. This role requires a professional who can think like an attacker, assess systems holistically, and provide actionable insights that enhance the security posture of critical government systems.
Key Responsibilities:
- Conduct web application, API, and network penetration tests to identify and validate security vulnerabilities.
- Perform grey-box and black-box testing following NIST SP 800-115 and OWASP Testing Framework methodologies.
- Evaluate authentication mechanisms, session management, access controls, and data handling practices for security flaws.
- Execute vulnerability exploitation and proof-of-concept validation to demonstrate real-world risk impact.
- Document findings with technical precision and provide clear remediation recommendations to stakeholders.
- Collaborate with internal security engineers and client teams to verify vulnerability fixes and perform retesting.
- Prepare and deliver comprehensive technical and executive-level reports that align with the COV Information Security Standard (SEC530).
- Support secure configuration reviews and compliance with applicable state and federal cybersecurity standards.
Required Minimum Qualifications:
- Bachelor's degree in computer science, Cybersecurity, Information Technology, or a related field (or equivalent experience).
- Preferably 7 years of experience in penetration testing or ethical hacking, with a strong focus on web applications and APIs.
- In-depth knowledge of web technologies, networking protocols, authentication systems, and encryption standards.
- Strong understanding of secure development practices (SDLC) and common vulnerabilities (OWASP Top 10).
- Excellent analytical, documentation, and communication skills.
Preferred Certifications:
- CEH (Certified Ethical Hacker) – Required.
- OSCP (Offensive Security Certified Professional) – Preferred.
- CompTIA Security / CySA / GPEN / GWAPT – Desirable.
Desired Attributes:
- Critical thinkers with the ability to simulate real-world attacks creatively and effectively.
- Detail-oriented with strong problem-solving and analytical skills.
- Proactive, self-motivated, and able to manage multiple testing assignments.
- Collaborative and professional, with the ability to work effectively in client-facing environments.
- Strong commitment to confidentiality, ethical standards, and data security compliance.
Ampcus is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veterans or individuals with disabilities.
About Ampcus
Sourced by ZipRecruiter
Ampcus Inc. is a ISO 20000, ISO 27000, ISO 9001, CMMI DEV/3 SM and CMMI SVC/3 SM certified global provider of a broad range of Technology and Business consulting services. From strategy to execution, our disciplined yet flexible approach starts and ends with our clients. By listening hard and working harder, client goals become our goals. Their success is our satisfaction. It’s why our clients sleep well at night. We believe that the success of an engagement is determined by strong project management, as well as clear communication and mutual commitment working collaboratively. Our methodology begins with listening to the customer about their needs, then working with their team to gain a clear understanding of the requirements, while providing knowledge transfer of best practices for the organization.
Industry
It services
Company size
1,001 - 5,000 Employees
Headquarters location
Chantilly, VA, US
Year founded
2004