1

Pentest Jobs (NOW HIRING)

Work as a member of a pentest team, collaborating and engaging directly with the client * Document in detail the results of assessments, audits, tests, and verification activities * Perform manual ...

Active OSCP, OSEP, GPEN, GXPN, CEH, PenTest+, or CISSP Duties: * Conduct enterprise penetration testing activities including: * Perform internal and external network penetration testing. * Conduct ...

CEH, CompTIA Cloud+, CompTIA PenTest+, CompTIA Security+, GCED, GMON, GDSA * CONOUS travel up to 30% * Strong verbal and written communication skills *Contingent upon award* PAY RANGE Final salary is ...

Perform penetration testing (PenTest) on applications in development and production environments (especially on SaaS platforms). * Implement both SaaS-based security testing (SaaST) and dynamic ...

CEH, CompTIA Cloud+, CompTIA PenTest+, CompTIA Security+, GCED, GMON, GDSA * CONOUS travel up to 30% * Strong verbal and written communication skills *Contingent upon award* PAY RANGE Final salary is ...

GMON, GRID, CEH, Cloud+, CySA+, GSEC, PenTest+, Security+, SSCP Responsibilities include: * Evaluate security alerts and analyzes network events to determine their impact on current operations.

next page

Showing results 1-20

Pentest information

See salary details

$11

$23

$32

How much do pentest jobs pay per hour?

As of Jul 6, 2026, the average hourly pay for pentest in the United States is $23.10, according to ZipRecruiter salary data. Most workers in this role earn between $19.23 and $26.44 per hour, depending on experience, location, and employer.

What are some common challenges pentesters face when conducting security assessments in large organizations?

Pentesters in large organizations often encounter challenges such as navigating complex network architectures, obtaining appropriate permissions, and coordinating with multiple departments to minimize disruption. They must also balance thoroughness with tight deadlines and ensure clear communication of findings to both technical and non-technical stakeholders. Adaptability and strong collaboration skills are crucial for overcoming these obstacles and ensuring a successful assessment.

What are the key skills and qualifications needed to thrive as a Penetration Tester, and why are they important?

To thrive as a Penetration Tester, you need strong knowledge of computer networks, operating systems, cybersecurity principles, and typically a degree in computer science or a related field. Familiarity with tools such as Metasploit, Burp Suite, Nmap, and certifications like CEH or OSCP are commonly required. Analytical thinking, attention to detail, and effective communication are crucial soft skills for accurately identifying vulnerabilities and reporting findings to clients or teams. These skills and qualifications are vital for uncovering security weaknesses and helping organizations strengthen their defenses against cyber threats.

What is the difference between Pentest vs Vulnerability Analyst?

AspectPentestVulnerability Analyst
CertificationsOSCP, CEH, GPENOSCP, CEH, CISSP
Work EnvironmentHands-on testing, simulated attacksVulnerability scanning, risk assessment
Employer & Industry UsageCybersecurity firms, IT departmentsSecurity teams, consulting firms

While both roles focus on cybersecurity, a Pentest involves actively exploiting vulnerabilities to identify security gaps, whereas a Vulnerability Analyst primarily assesses and reports on vulnerabilities without exploiting them. Both roles require similar certifications and often work in the same environments, but their core activities differ in approach and scope.

What are Pentesters?

Pentesters, also known as penetration testers, are cybersecurity professionals who simulate cyberattacks on computer systems, networks, or applications. Their goal is to identify vulnerabilities that malicious hackers could exploit. Pentesters use a variety of tools and techniques to assess security controls and provide recommendations for improving an organization's defenses. The results of their tests help organizations understand and mitigate potential risks. Pentesting is an essential part of maintaining robust cybersecurity.
More about Pentest jobs
What cities are hiring for Pentest jobs? Cities with the most Pentest job openings:
What are the most commonly searched types of Pentest jobs? The most popular types of Pentest jobs are:
What states have the most Pentest jobs? States with the most job openings for Pentest jobs include:
Infographic showing various Pentest job openings in the United States as of June 2026, with employment types broken down into 97% Full Time, and 3% Contract. Highlights an 77% Physical, 1% Hybrid, and 22% Remote job distribution, with an average salary of $48,054 per year, or $23.1 per hour.
Application Penetration Testing Specialist (Remote)

Application Penetration Testing Specialist (Remote)

First Citizens Bank

Carolina, RI • On-site, Remote

Full-time

Posted 17 days ago


First Citizens Bank rating

7.5

Company rating: 7.5 out of 10

Based on 104 frontline employees who took The Breakroom Quiz

89th of 144 rated banks


Job description

Overview

This is a remote role that may only be hired in the following location(s): Arizona, Texas, or North Carolina.

This position ensures the technological and digital security of the Bank. The tester will identify exposure to cyber threats, security risks, and unauthorized access and assist with mitigation guidance. The tester will assess organizational networks, applications, or systems for potential vulnerabilities. The tester will maintain knowledge of industry practices, technology, and evolving threats to enhance defenses for the Bank's information systems and resources.

The Pentester must be able to plan, coordinate, communicate, track, and conduct penetration testing assessments on the organization’s applications, aid in the coordination of additional testing through third-party vendors, and may lead other associates in the work group acting as lead tester. The selected candidate is welcome to work remotely and/or from a corporate office location.


Responsibilities
  • Plan and conduct application penetration tests of complex computer systems from a remote testing location
  • Coordinate third-party vendor testing
  • Analyze and document test results in the format and level of detail dictated by current procedures
  • Can convey highly technical information in a manner that can be understood and appreciated by Application Owners and other stakeholders
  • Track vulnerabilities and metrics
  • Coordinate multiple projects/assignments simultaneously and accurately, and deliver results in a timely manner
  • Stay current on new tools, TTPs, vulnerabilities, and emerging threats
  • Aid in defining and documenting Pentest Processes

#LI-IK1 


Qualifications

Bachelor's Degree and 4 years of experience in Systems Engineering, Network, or Information Security OR High School Diploma or GED and 8 years of experience in Systems Engineering, Network, or Information Security

Preferred Qualifications:

  • Bachelor's Degree and 4 or more years of experience in systems engineering, network security, or information security OR High School Diploma or GED and 6 years of experience in application penetration testing, systems engineering, network security, or information security
  • Expertise in application penetration testing techniques with and without scanners
  • Demonstrated expertise in:
    • Testing web applications and databases
    • System development life cycle
    • Network administration
    • Cloud penetration testing
    • Linux and Windows
    • Kali Linux tools, Burp Suite, and other pentest tools
    • Experience with pentesting frameworks such as OWASP and PTES
    • Jira and Confluence
    • Analysis and development of professional reports
    • Knowledge of the Secure System Development Lifecycle
  • Demonstrated ability to effectively balance and manage multiple priorities
  • Proficiency in Microsoft Word, Excel, PowerPoint and Outlook
  • Preferred but not required: OSWE, GPEN, GWAPT, or other equal certifications

Benefits are an integral part of total rewards and First Citizens Bank is committed to providing a competitive, thoughtfully designed and quality benefits program to meet the needs of our associates. More information can be found at https://jobs.firstcitizens.com/benefits.

Qualifications:

Bachelor's Degree and 4 years of experience in Systems Engineering, Network, or Information Security OR High School Diploma or GED and 8 years of experience in Systems Engineering, Network, or Information Security

Preferred Qualifications:

  • Bachelor's Degree and 4 or more years of experience in systems engineering, network security, or information security OR High School Diploma or GED and 6 years of experience in application penetration testing, systems engineering, network security, or information security
  • Expertise in application penetration testing techniques with and without scanners
  • Demonstrated expertise in:
    • Testing web applications and databases
    • System development life cycle
    • Network administration
    • Cloud penetration testing
    • Linux and Windows
    • Kali Linux tools, Burp Suite, and other pentest tools
    • Experience with pentesting frameworks such as OWASP and PTES
    • Jira and Confluence
    • Analysis and development of professional reports
    • Knowledge of the Secure System Development Lifecycle
  • Demonstrated ability to effectively balance and manage multiple priorities
  • Proficiency in Microsoft Word, Excel, PowerPoint and Outlook
  • Preferred but not required: OSWE, GPEN, GWAPT, or other equal certifications

Benefits are an integral part of total rewards and First Citizens Bank is committed to providing a competitive, thoughtfully designed and quality benefits program to meet the needs of our associates. More information can be found at https://jobs.firstcitizens.com/benefits.

Education:UNAVAILABLEEmployment Type: FULL_TIME

What First Citizens Bank employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom