ZipRecruiter

Log In

2

Remote Web App Penetration Testing Jobs (NOW HIRING)

CertiK

Sr. Security Engineer (Penetration Testing)

OR · Remote

$100K - $180K/yr

Perform security assessments on web, mobile, thick client applications, and browser extensions ... LI-Remote #blockchain #startups #hiring CertiK is proud to offer medical, vision, and dental ...

CertiK

Sr. Security Engineer (Penetration Testing)

$100K - $180K/yr

Perform security assessments on web, mobile, thick client applications, and browser extensions ... LI-Remote #blockchain #startups #hiring CertiK is proud to offer medical, vision, and dental ...

Bishop Fox

Penetration Tester - Contract

As leaders in continuous offensive security and penetration testing, we deliver world-class ... Experience * 5+ years of experience planning, conducting, and managing web application penetration ...

Gunnison

Junior Penetration Tester

Responsibilities : • Conduct security testing of IT assets, web applications, infrastructure ... penetration testing experience required. • Knowledge of NIST SPs and NIST Risk Management ...

New

Bishop Fox

Penetration Tester

With Bishop Fox, your responsibilities would include testing web applications, hacking networks ... web application penetration tests * 5+ years of application security experience * Deep ...

OSec

Penetration Tester (Remote)

New York, NY · Remote

The Penetration Tester is responsible for working as part of the Assessment Team to conduct and ... Conduct security audits, network penetration tests, and web application, API and cloud assessments.

Bishop Fox

Penetration Tester

OR · On-site +1

With Bishop Fox, your responsibilities would include testing web applications, hacking networks ... web application penetration tests * 5+ years of application security experience * Deep ...

Marathon TS

Penetration Tester

Marathon TS Penetration Tester Hybrid Remote in Manassas, VA Financial Technology Industry Penetration Tester As a penetration tester in the Swift Red Team, you will assess security from an offensive ...

OSEC

Penetration Tester

New York, NY · On-site +1

The Penetration Tester is responsible for working as part of the Assessment Team to conduct and ... Conduct security audits, network penetration tests, and web application, API and cloud assessments.

Instacart

Senior Product Security Engineer II

$230K - $242K/yr

Experience in mobile app penetration testing, AI security testing or cloud penetration testing ... This role is remote and the base pay range for a successful candidate is dependent on their ...

Peraton

Jr Cyber Penetration Tester

$66K - $106K/yr

Understand common Web Application vulnerabilities like SQLi, XSS, CSRF, and HTTP Flooding. * Experience with penetration testing tools such as Metasploit, Burp Suite, Nmap, etc. * Fundamentals of ...

Diverse Lynx

FullStack Microsoft .NET Smart Web App

$48/hr

NET Smart Web App $48/hr REMOTE Design, develop, and maintain highly scalable internal and external facing APIs utilizing.NET Core. • Evaluate application requirements by conferring with product ...

Peraton

Jr Cyber Penetration Tester / Secret

$66K - $106K/yr

Understand common Web Application vulnerabilities like SQLi, XSS, CSRF, and HTTP Flooding. * Experience with penetration testing tools such as Metasploit, Burp Suite, Nmap, etc. * Fundamentals of ...

Peraton

Jr Cyber Penetration Tester

Arlington, VA · On-site +1

$66K - $106K/yr

Understand common Web Application vulnerabilities like SQLi, XSS, CSRF, and HTTP Flooding. * Experience with penetration testing tools such as Metasploit, Burp Suite, Nmap, etc. * Fundamentals of ...

next page

Showing results 1-20

All JobsRemote Web App Penetration Testing Jobs

Remote Web App Penetration Testing information

See salary details

$11

$59

$86

How much do remote web app penetration testing jobs pay per hour?

As of Jun 29, 2026, the average hourly pay for remote web app penetration testing in the United States is $59.01, according to ZipRecruiter salary data. Most workers in this role earn between $51.20 and $66.83 per hour, depending on experience, location, and employer.

What is the difference between Remote Web App Penetration Testing vs Remote Network Security Analyst?

AspectRemote Web App Penetration TestingRemote Network Security Analyst
CertificationsOSCP, CEH, GPENCompTIA Security+, CISSP, GIAC
Work EnvironmentSecurity consulting firms, tech companies, freelanceCorporate IT teams, government agencies
Primary FocusIdentifying vulnerabilities in web applicationsMonitoring and securing network infrastructure
Tools & TechniquesBurp Suite, OWASP ZAP, SQLmapSIEM, IDS/IPS, network scanners

Remote Web App Penetration Testing focuses on assessing web application security by identifying vulnerabilities, while Remote Network Security Analysts monitor and protect entire network infrastructures. Both roles require cybersecurity certifications and involve security tools, but they target different aspects of an organization's security landscape.

More about Remote Web App Penetration Testing jobs
What cities are hiring for Remote Web App Penetration Testing jobs? Cities with the most Remote Web App Penetration Testing job openings:
What are the most commonly searched types of Web App Penetration Testing jobs? The most popular types of Web App Penetration Testing jobs are:
What states have the most Remote Web App Penetration Testing jobs? States with the most job openings for Remote Web App Penetration Testing jobs include:
What job categories do people searching Remote Web App Penetration Testing jobs look for? The top searched job categories for Remote Web App Penetration Testing jobs are:
Remote Web App Penetration Testing jobs near you
Sr. Security Engineer (Penetration Testing)

Sr. Security Engineer (Penetration Testing)

CertiK

OR • Remote

$100K - $180K/yr

Full-time

Posted 15 days ago

Key responsibilities

  • Perform security assessments on web, mobile, thick client applications, and browser extensions.

  • Conduct external and internal network penetration tests.

  • Perform security source code reviews and cloud security reviews.

Job description

Why Us?
CertiK is a pioneer in blockchain security, leveraging best-in-class AI technology to protect and monitor blockchain protocols and smart contracts. Founded in 2018 by professors from Yale University and Columbia University, CertiK’s mission is to secure the web3 world. CertiK applies cutting-edge innovations from academia to enterprise, enabling mission-critical applications to scale with safety and correctness.

About the Role
The primary responsibility of this role is for CertiK’s security-related services. Intersecting cybersecurity and blockchain, CertiK’s security offerings include security consulting, security reviews, security auditing of smart contracts and blockchains, verification of smart contracts, penetration testing, and more. We are looking to hire someone with a passion for application security and penetration testing. This is a fun and challenging full-time position. If you are excited about hacking, threat modeling, scanning, auditing, designing, and enhancing the security of applications across the board then you will thrive in this role. While you work with clients, we will also provide you with plenty of opportunities to get involved with research and development efforts to help us raise the standards of blockchain security.
Responsibilities
  • Perform security assessments on web, mobile, thick client applications, and browser extensions
  • Conduct external and internal network penetration tests
  • Perform security source code reviews
  • Perform cloud security reviews
  • Develop comprehensive pentest reports for both technical and non-technical audiences
  • Research and develop innovative techniques, tools, and methodologies for pentesting applications in the blockchain space 
  • Contribute to the community by developing tools, presentations, and blog posts
Requirements
  • Passionate about cryptocurrency, DeFi, and blockchain, with a willingness to learn Web3 technologies such as smart contracts
  • Minimum of 4 years of experience in application security and penetration testing
  • Experienced in source code review for different languages, with a strong understanding of JavaScript and TypeScript
  • Experienced in mobile application penetration testing
  • Familiar with cloud platforms and their security risks, such as AWS, Azure, and GCP
  • Experience in programming with scripting languages such as Python and Bash
  • Solid understanding of cryptography
  • BS/MS/PhD in Computer Science or Information Security 
  • Strong spoken and written communication skills
Bonus Points
  • Experienced in pentesting Web3 applications such as crypto exchanges, wallets, Dapps, and key custodian solutions 
  • Experienced in smart contract security audits
  • Familiar with browser extension architecture and security risks
  • Actively participate in the blockchain security community
  • OSCP, OSWE, OSCE, GWAPT, or comparable certification
  • Participated in bug bounty programs and audit contests
  • Published security-related blog posts and spoken at security conferences and/or local meetups
About the Company
One of the fastest-growing and most trusted companies in blockchain security, CertiK is a true market leader. To date, CertiK has worked with over 3,200 Enterprise clients, secured over $310 billion worth of digital assets, and has detected over 60,000 vulnerabilities in blockchain code. Our clients include leading projects such as Aave, Polygon, Binance Smart Chain, Terra, Yearn, and Chiliz.

Investors = Insight Partners, Sequoia, Tiger Global, Coatue Management, Lightspeed, Advent International, SoftBank, Hillhouse Capital, Goldman Sachs, Coinbase Ventures, Binance, Shunwei Capital, IDG Capital, Wing, Legend Star, Danhua Capital and other investors.

Compensation
Target annual base salary for this role performed in the US is $100,000 - $180,000. The exact compensation at which this job is filled will be determined by the skills and experience of qualified candidates.

#LI-Remote
#blockchain
#startups
#hiring


CertiK is proud to offer medical, vision, and dental insurance, 401(k) plan with company matching, life and accidental death and dismemberment insurance, HSA (with high deductible plan), FSA, and other benefits to all full-time employees, along with flexible paid time off and holidays. CertiK also offers a variable commission program for business development sales roles.
 
In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification form upon hire.
 
CertiK is proud to be an equal opportunity employer. We will not discriminate against any applicant or employee on the basis of age, race, color, creed, religion, sex, sexual orientation, gender, gender identity or expression, medical condition, national origin, ancestry, citizenship, marital status or civil partnership/union status, physical or mental disability, pregnancy, childbirth, genetic information, military and veteran status, or any other basis prohibited by applicable federal, state or local law.
 
CertiK will consider for employment qualified applicants with criminal histories in a manner consistent with local and federal requirements.
https://www.eeoc.gov/sites/default/files/migrated_files/employers/poster_screen_reader_optimized.pdf
 
All CertiK employees are expected to actively support diversity on their teams, and in the Company.

We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses and identifying potential inconsistencies or verification signals in application materials based on available information. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.