2

Remote Web Penetration Tester Jobs (NOW HIRING)

Jr Cyber Penetration Tester

Arlington, VA ยท On-site +1

$66K - $106K/yr

Understand common Web Application vulnerabilities like SQLi, XSS, CSRF, and HTTP Flooding. * Experience with penetration testing tools such as Metasploit, Burp Suite, Nmap, etc. * Fundamentals of ...

Jr Cyber Penetration Tester / Secret

Arlington, VA ยท On-site +1

$66K - $106K/yr

Understand common Web Application vulnerabilities like SQLi, XSS, CSRF, and HTTP Flooding. * Experience with penetration testing tools such as Metasploit, Burp Suite, Nmap, etc. * Fundamentals of ...

In-depth knowledge of web application penetration testing, covering OWASP Top 10 vulnerabilities (e ... remote and hybrid options What's in it for you: - Working with an industry leader : Be part of a ...

Proven proficiency performing CCRI/ vulnerability assessment/ penetration testing on networks ... Web Services (IIS, Apache, Proxy) * Database (SQL Server, Oracle) * Email Services (Exchange)

Sr. Security Engineer (Penetration Testing)

OR ยท Remote

$100K - $180K/yr

Perform security assessments on web, mobile, thick client applications, and browser extensions ... LI-Remote #blockchain #startups #hiring CertiK is proud to offer medical, vision, and dental ...

Proven proficiency performing CCRI/ vulnerability assessment/ penetration testing on networks ... Web Services (IIS, Apache, Proxy) * Database (SQL Server, Oracle) * Email Services (Exchange)

Perform security assessments on web, mobile, thick client applications, and browser extensions ... LI-Remote #blockchain #startups #hiring CertiK is proud to offer medical, vision, and dental ...

Proven proficiency performing CCRI/ vulnerability assessment/ penetration testing on networks ... Web Services (IIS, Apache, Proxy) * Database (SQL Server, Oracle) * Email Services (Exchange)

Conduct web application, API, mobile, and network vulnerability assessments using industry-standard ... Develop andmaintain the penetration testing program, including scope definitions, rules of ...

next page

Showing results 1-20

Remote Web Penetration Tester information

See salary details

$22.5K

$119.9K

$168.5K

How much do remote web penetration tester jobs pay per year?

As of Jul 15, 2026, the average yearly pay for remote web penetration tester in the United States is $119,895.00, according to ZipRecruiter salary data. Most workers in this role earn between $96,000.00 and $141,000.00 per year, depending on experience, location, and employer.

How does a Remote Web Penetration Tester typically coordinate with development and security teams during an assessment?

As a Remote Web Penetration Tester, you will regularly collaborate with development and security teams through virtual meetings, secure communication channels, and detailed reporting. You'll often present your findings in real time or via structured reports, clarifying vulnerabilities and recommending mitigation steps. Strong communication skills are key, as you may need to explain complex technical issues to non-technical stakeholders and sometimes assist in prioritizing remediation efforts. This collaborative approach ensures that security improvements are effectively understood and implemented, even when working remotely.

What is a remote web penetration tester?

A remote web penetration tester is a cybersecurity professional who evaluates the security of web applications and websites from a remote location. Their primary role is to identify vulnerabilities, such as coding errors or misconfigurations, that could be exploited by malicious hackers. They use a variety of tools and techniques to simulate attacks, report findings, and recommend solutions, all without being physically present at the client's site. This position often requires strong technical skills, analytical thinking, and up-to-date knowledge of the latest web threats and defenses.

What is the difference between Remote Web Penetration Tester vs Remote Network Security Analyst?

AspectRemote Web Penetration TesterRemote Network Security Analyst
CertificationsOSCP, CEH, GPENCompTIA Security+, CISSP, CEH
Work EnvironmentConducts simulated attacks on web applications remotelyMonitors and analyzes network security remotely
Industry UsageCybersecurity firms, tech companies, consultingFinancial institutions, government agencies, enterprises

The Remote Web Penetration Tester focuses on identifying vulnerabilities in web applications through simulated attacks, requiring certifications like OSCP or CEH. In contrast, the Remote Network Security Analyst monitors and analyzes network traffic to detect threats, often holding certifications like Security+ or CISSP. Both roles are essential in cybersecurity but differ in their focus areas and daily tasks.

What are the key skills and qualifications needed to thrive as a Remote Web Penetration Tester, and why are they important?

To thrive as a Remote Web Penetration Tester, you need a deep understanding of web application security, networking protocols, and vulnerability assessment, often supported by certifications like OSCP or CEH. Familiarity with tools such as Burp Suite, Metasploit, and automated scanners is essential for performing thorough security evaluations. Strong analytical thinking, attention to detail, and clear written communication are critical soft skills for effectively identifying vulnerabilities and reporting findings to clients. These skills ensure comprehensive assessments, actionable reporting, and contribute to the overall security posture of organizations.
More about Remote Web Penetration Tester jobs
What cities are hiring for Remote Web Penetration Tester jobs? Cities with the most Remote Web Penetration Tester job openings:
What are the most commonly searched types of Web Penetration Tester jobs? The most popular types of Web Penetration Tester jobs are:
What states have the most Remote Web Penetration Tester jobs? States with the most job openings for Remote Web Penetration Tester jobs include:
Infographic showing various Remote Web Penetration Tester job openings in the United States as of July 2026, with employment types broken down into 2% Locum Tenens, 94% Full Time, 2% Part Time, and 2% Contract. Highlights an 83% Physical, 2% Hybrid, and 15% Remote job distribution, with an average salary of $119,895 per year, or $57.6 per hour.
Penetration Tester | Upto $2150 Part-time

Penetration Tester | Upto $2150 Part-time

Mercor

New York, NY โ€ข Remote

$1.7K - $2.1K/wk

Part-time

Re-posted 13 days ago


Job description

About the job

Mercor connects elite creative and technical talent with leading AI research labs. Headquartered in San Francisco, our investors include Benchmark, General Catalyst, Peter Thiel, Adam D'Angelo, Larry Summers, and Jack Dorsey.

Position: Cybersecurity Expert
Type: Contract
Compensation: $1,750โ€“$2,150 per completed task
Location: Remote

Role Responsibilities

  • Review and evaluate AI-generated outputs related to threat analysis, vulnerability assessment, and security architecture recommendations.
  • Create realistic scenarios based on cybersecurity workflows such as incident response runbooks, threat hunting queries, and penetration testing reports.
  • Annotate, label, and validate data across cybersecurity use cases like CVE classification accuracy and SIEM alert triage.
  • Provide structured feedback on AI accuracy in areas such as cybersecurity frameworks (NIST CSF, MITRE ATT&CK) and threat intelligence standards (STIX/TAXII).
  • Collaborate asynchronously with research teams to refine evaluation frameworks for cybersecurity AI.

Qualifications

Must-Have

  • 3+ years of professional experience in cybersecurity at an enterprise organization, MSSP, consultancy, or government/defense environment.
  • Background in areas such as SOC analysis, incident response (DFIR), penetration testing, threat intelligence, or security architecture.
  • Strong analytical thinking and ability to translate security operations into structured evaluation tasks.
  • Clear written communication and attention to detail.

Preferred

  • Professional certifications like CISSP, CISM, CEH, OSCP, GIAC certifications, Security+.

Compensation & Legal

  • Task Completion Pay: Competitive and based on task quality.
  • Performance Bonus: Weekly bonus incentive for top performers.
  • Hourly Opportunity: Transition to hourly compensation for sustained quality.

Application Process (Takes 20โ€“30 mins to complete)

  • Upload resume
  • AI interview based on your resume
  • Submit form

Resources & Support

  • For details about the interview process and platform information, please check: https://talent.docs.mercor.com/welcome
  • For any help or support, reach out to: support@mercor.com

PS: Our team reviews applications daily. Please complete your AI interview and application steps to be considered for this opportunity.