Manual Ethical Hacker
Jacksonville, FL · On-site
RESTful web services • SQL injection/XSS attack without the use of tools • Experience performing manual code reviews for security relevant issues • Experience working with SAST tools to ...
Manual Ethical Hacker
Jacksonville, FL · On-site
RESTful web services • SQL injection/XSS attack without the use of tools • Experience performing manual code reviews for security relevant issues • Experience working with SAST tools to ...
Software Engineer
Canton, NC · On-site
Strong SQL skills, including schema design, query optimization, and stored procedure development, with awareness of data security and injection prevention best practices. * Experience building and ...
Software Engineer
Canton, NC · On-site
Strong SQL skills, including schema design, query optimization, and stored procedure development, with awareness of data security and injection prevention best practices. * Experience building and ...
Software Engineer
OH · On-site
Strong SQL skills, including schema design, query optimization, and stored procedure development, with awareness of data security and injection prevention best practices. * Experience building and ...
Software Engineer
OH · On-site
Strong SQL skills, including schema design, query optimization, and stored procedure development, with awareness of data security and injection prevention best practices. * Experience building and ...
.NET Developer - Lansing, MI
Lansing, MI · On-site
Experience developing secure web applications (SQL injection prevention, cross-site scripting protection, etc.) * Experience with Azure DevOps / TFS * Familiarity with SendGrid * Knowledge of Web ...
Quick apply
.NET Developer - Lansing, MI
Lansing, MI · On-site
Experience developing secure web applications (SQL injection prevention, cross-site scripting protection, etc.) * Experience with Azure DevOps / TFS * Familiarity with SendGrid * Knowledge of Web ...
Senior Penetration Tester (WebApp and Network)
Charlotte, NC · On-site
$50 - $65/hr
Understanding and exploiting known web vulnerabilities such as SQL injection, Cross-Site Scripting (XSS), Cross-Site Request Forgery (CSRF), and others. * Preparing detailed reports on findings and ...
Senior Penetration Tester (WebApp and Network)
Charlotte, NC · On-site
$50 - $65/hr
Understanding and exploiting known web vulnerabilities such as SQL injection, Cross-Site Scripting (XSS), Cross-Site Request Forgery (CSRF), and others. * Preparing detailed reports on findings and ...
Senior Penetration Tester (WebApp and Network)
Charlotte, NC · On-site +1
$50 - $65/hr
Understanding and exploiting known web vulnerabilities such as SQL injection, Cross-Site Scripting (XSS), Cross-Site Request Forgery (CSRF), and others. * Preparing detailed reports on findings and ...
Senior Penetration Tester (WebApp and Network)
Charlotte, NC · On-site +1
$50 - $65/hr
Understanding and exploiting known web vulnerabilities such as SQL injection, Cross-Site Scripting (XSS), Cross-Site Request Forgery (CSRF), and others. * Preparing detailed reports on findings and ...
Security Architect Analyst
Washington, DC · On-site
$73.50 - $95.25/hr
OWASP Top 10, SANS 25, SQL Injection, Code review, Cloud Security - AWS Required Skills/Abilities: Demonstrated experience enterprise security architecture design and implementation for a financial ...
Security Architect Analyst
Washington, DC · On-site
$73.50 - $95.25/hr
OWASP Top 10, SANS 25, SQL Injection, Code review, Cloud Security - AWS Required Skills/Abilities: Demonstrated experience enterprise security architecture design and implementation for a financial ...
System/application threats (buffer overflow, cross-site scripting, SQL injection) * Security architecture and enterprise reference models * National/international cybersecurity laws, policies, and ...
System/application threats (buffer overflow, cross-site scripting, SQL injection) * Security architecture and enterprise reference models * National/international cybersecurity laws, policies, and ...
Senior Backend Engineer
New York, NY · On-site
Implement security best practices to protect against common web application vulnerabilities, such as SQL injection, cross-site scripting (XSS), and data breaches. * Ensure compliance with relevant ...
Senior Backend Engineer
New York, NY · On-site
Implement security best practices to protect against common web application vulnerabilities, such as SQL injection, cross-site scripting (XSS), and data breaches. * Ensure compliance with relevant ...
We empower customers to configure firewall rules that allow, block, monitor, or CAPTCHA web requests based on IP addresses, HTTP headers, SQL injection patterns, cross-site scripting, and more. Our ...
We empower customers to configure firewall rules that allow, block, monitor, or CAPTCHA web requests based on IP addresses, HTTP headers, SQL injection patterns, cross-site scripting, and more. Our ...
... SQL injection) Security architecture and enterprise reference models National/international cybersecurity laws, policies, and ethics Penetration testing principles, tools, and techniques Technical ...
... SQL injection) Security architecture and enterprise reference models National/international cybersecurity laws, policies, and ethics Penetration testing principles, tools, and techniques Technical ...
... SQL injection attacks and coding security logging into software functionality). • Familiarity with Design patterns preferred. Required Skills : Scrum Master,.NET,SQL,Java Basic Qualification
... SQL injection attacks and coding security logging into software functionality). • Familiarity with Design patterns preferred. Required Skills : Scrum Master,.NET,SQL,Java Basic Qualification
Strong knowledge of web security, including XSS and SQL injection - Preferred. * Experience with ticketing systems like Remedy or KACE - Preferred. * Bachelor's degree in computer science ...
Strong knowledge of web security, including XSS and SQL injection - Preferred. * Experience with ticketing systems like Remedy or KACE - Preferred. * Bachelor's degree in computer science ...
Strong knowledge of web security, including XSS and SQL injection - Preferred. * Experience with ticketing systems like Remedy or KACE - Preferred. * Bachelor's degree in computer science ...
Strong knowledge of web security, including XSS and SQL injection - Preferred. * Experience with ticketing systems like Remedy or KACE - Preferred. * Bachelor's degree in computer science ...
Senior Backend Engineer
New York, NY · On-site
Implement security best practices to protect against common web application vulnerabilities, such as SQL injection, cross-site scripting (XSS), and data breaches. * Ensure compliance with relevant ...
Senior Backend Engineer
New York, NY · On-site
Implement security best practices to protect against common web application vulnerabilities, such as SQL injection, cross-site scripting (XSS), and data breaches. * Ensure compliance with relevant ...
Senior Backend Engineer
New York, NY · Remote
Implement security best practices to protect against common web application vulnerabilities, such as SQL injection, cross-site scripting (XSS), and data breaches. * Ensure compliance with relevant ...
Quick apply
Senior Backend Engineer
New York, NY · Remote
Implement security best practices to protect against common web application vulnerabilities, such as SQL injection, cross-site scripting (XSS), and data breaches. * Ensure compliance with relevant ...
We empower customers to configure firewall rules that allow, block, monitor, or CAPTCHA web requests based on IP addresses, HTTP headers, SQL injection patterns, cross-site scripting, and more. Our ...
We empower customers to configure firewall rules that allow, block, monitor, or CAPTCHA web requests based on IP addresses, HTTP headers, SQL injection patterns, cross-site scripting, and more. Our ...
Developer/Programmer Analyst
Austin, TX · On-site
Strong knowledge of web security, including XSS and SQL injection - Preferred. * Experience with ticketing systems like Remedy or KACE - Preferred. * Bachelor's degree in computer science ...
Developer/Programmer Analyst
Austin, TX · On-site
Strong knowledge of web security, including XSS and SQL injection - Preferred. * Experience with ticketing systems like Remedy or KACE - Preferred. * Bachelor's degree in computer science ...
We empower customers to configure firewall rules that allow, block, monitor, or CAPTCHA web requests based on IP addresses, HTTP headers, SQL injection patterns, cross-site scripting, and more. Our ...
We empower customers to configure firewall rules that allow, block, monitor, or CAPTCHA web requests based on IP addresses, HTTP headers, SQL injection patterns, cross-site scripting, and more. Our ...
Software Engineer, Backend
San Francisco, CA · On-site
$105K - $125K/yr
Strong understanding of security best practices, including authentication methods (OAuth, JWT), encryption, and secure API development; knowledge of common attack vectors (SQL injection, privilege ...
Software Engineer, Backend
San Francisco, CA · On-site
$105K - $125K/yr
Strong understanding of security best practices, including authentication methods (OAuth, JWT), encryption, and secure API development; knowledge of common attack vectors (SQL injection, privilege ...
Sql Injection information
See salary details
$20.91 - $25.63
0% of jobs
$25.63 - $30.35
2% of jobs
$30.35 - $35.07
5% of jobs
$35.07 - $39.79
7% of jobs
$43.24 is the 25th percentile. Wages below this are outliers.
$39.79 - $44.51
14% of jobs
$44.51 - $49.24
19% of jobs
The median wage is $49.86 / hr.
$49.24 - $53.96
16% of jobs
$58.09 is the 75th percentile. Wages above this are outliers.
$53.96 - $58.68
13% of jobs
$58.68 - $63.40
11% of jobs
$63.40 - $68.12
7% of jobs
$68.12 - $72.84
5% of jobs
$20
$52
$72
How much do sql injection jobs pay per hour?
As of May 29, 2026, the average hourly pay for sql injection in the United States is $52.60, according to ZipRecruiter salary data. Most workers in this role earn between $43.51 and $59.62 per hour, depending on experience, location, and employer.
What are the key skills and qualifications needed to thrive as a SQL Injection specialist, and why are they important?
I'm sorry, but 'SQL Injection' is not a recognized real-world professional occupation. Please provide a valid job title for an accurate response.
What challenges might security analysts face when detecting and mitigating SQL injection vulnerabilities in a large organization?
Security analysts often encounter challenges such as legacy systems with outdated code, inconsistent coding standards, and limited visibility into all database interactions. In large organizations, coordinating with multiple development teams to patch vulnerabilities and enforce secure coding practices can be complex. Analysts must also balance the urgency of remediation with ongoing business operations, ensuring minimal disruption while implementing fixes and continuous monitoring solutions.
What is SQL Injection?
SQL Injection is a type of cybersecurity vulnerability that allows attackers to interfere with the queries an application makes to its database. By inserting or 'injecting' malicious SQL statements into input fields, attackers can gain unauthorized access to, modify, or delete data in the database. This vulnerability can lead to data breaches, loss of data integrity, and even complete control over the affected application. Proper input validation, parameterized queries, and regular security testing can help prevent SQL Injection attacks.
What is the difference between Sql Injection vs Web Application Security Specialist?
| Aspect | Sql Injection | Web Application Security Specialist |
|---|---|---|
| Primary Focus | Identifying and exploiting SQL injection vulnerabilities | Protecting web applications from various security threats, including SQL injection |
| Skills Required | SQL, scripting, vulnerability testing | Security protocols, vulnerability assessment, secure coding |
| Work Environment | Penetration testing, security labs, development teams | Security audits, incident response, development teams |
| Certifications | CEH, OSCP, GIAC certifications | CISSP, CEH, CSSLP certifications |
Sql Injection is a specific attack technique used to exploit vulnerabilities in database queries, while a Web Application Security Specialist focuses on defending against such attacks and other threats. Understanding both roles helps organizations identify vulnerabilities and implement effective security measures to protect their web applications.
Full-time
Posted 14 days ago
Job description
Job Summary:
Bank of America is committed to helping make financial lives better through the power of every connection. They are seeking a Manual Ethical Hacker to perform application security assessments, identify vulnerabilities, and provide advice on managed risks within their Cyber Security Assurance Offensive Security group.
Responsibilities:
• Perform assigned analysis of internal and external threats on information systems and predict future threat behavior
• Incorporate threat actors' tactics, techniques, and procedures into offensive security testing
• Perform assessments of the security, effectiveness, and practicality of multiple technology systems
• Leverage innovative thinking to help solve problems or introduce new ideas to processes or products applicable to offensive security.
• Prepare and present detailed technical information for various media including documents, reports, and notifications
• Provide clear and practical advice regarding managed risks
• Learn and develop advanced technical and leadership skills, Mentor Junior assessors in technical tradecraft and soft skills
Qualifications:
Required:
• Minimum of 4 years of professional pentesting, application security or ethical hacking experience, preferably in a large, complex, enterprise environment
• Detailed technical knowledge in at least 3 of the following areas: security engineering; application architecture; authentication and security protocols; application session management; applied cryptography; common communication protocols; mobile frameworks; single sign-on technologies; exploit automation platforms; RESTful web services
• SQL injection/XSS attack without the use of tools
• Experience performing manual code reviews for security relevant issues
• Experience working with SAST tools to identify vulnerabilities
• Able to manually identify and reproduce findings, discuss remediation concepts, develop PoCs for vulnerabilities, use scripting/coding techniques, proficiently execute common penetration testing tools, triage, and support incidents, and produce high value findings
• Experience performing manual web application assessments i.e., must be able to simulate a
• Knowledge of network and Web related protocols/technologies (e.g., UNIX/LINUX, TCP/IP, Cookies)
• Experience with vulnerability assessment tools and penetration testing techniques
• Solid programming/debugging skills
• Experience of using a variety of tools, included, but not limited to, IBM AppScan, Burp and SQL Map
• Threat Analysis
• Innovative Thinking
• Technology Systems Assessment
• Technical Documentation
• Advisory
Preferred:
• CISSP, CEH, OSCP, OSWE, GPEN, PenTest+ or similar
• Strong programming/scripting skills
• Mobile application analysis
• Frida
• Binary analysis (disassembly skills)
Company:
Bank of America is a financial institution that offers credit cards, home loans, and auto loan services. Founded in 1998, the company is headquartered in Charlotte, USA, with a team of 10001+ employees. The company is currently Late Stage.
Bank of America is committed to helping make financial lives better through the power of every connection. They are seeking a Manual Ethical Hacker to perform application security assessments, identify vulnerabilities, and provide advice on managed risks within their Cyber Security Assurance Offensive Security group.
Responsibilities:
• Perform assigned analysis of internal and external threats on information systems and predict future threat behavior
• Incorporate threat actors' tactics, techniques, and procedures into offensive security testing
• Perform assessments of the security, effectiveness, and practicality of multiple technology systems
• Leverage innovative thinking to help solve problems or introduce new ideas to processes or products applicable to offensive security.
• Prepare and present detailed technical information for various media including documents, reports, and notifications
• Provide clear and practical advice regarding managed risks
• Learn and develop advanced technical and leadership skills, Mentor Junior assessors in technical tradecraft and soft skills
Qualifications:
Required:
• Minimum of 4 years of professional pentesting, application security or ethical hacking experience, preferably in a large, complex, enterprise environment
• Detailed technical knowledge in at least 3 of the following areas: security engineering; application architecture; authentication and security protocols; application session management; applied cryptography; common communication protocols; mobile frameworks; single sign-on technologies; exploit automation platforms; RESTful web services
• SQL injection/XSS attack without the use of tools
• Experience performing manual code reviews for security relevant issues
• Experience working with SAST tools to identify vulnerabilities
• Able to manually identify and reproduce findings, discuss remediation concepts, develop PoCs for vulnerabilities, use scripting/coding techniques, proficiently execute common penetration testing tools, triage, and support incidents, and produce high value findings
• Experience performing manual web application assessments i.e., must be able to simulate a
• Knowledge of network and Web related protocols/technologies (e.g., UNIX/LINUX, TCP/IP, Cookies)
• Experience with vulnerability assessment tools and penetration testing techniques
• Solid programming/debugging skills
• Experience of using a variety of tools, included, but not limited to, IBM AppScan, Burp and SQL Map
• Threat Analysis
• Innovative Thinking
• Technology Systems Assessment
• Technical Documentation
• Advisory
Preferred:
• CISSP, CEH, OSCP, OSWE, GPEN, PenTest+ or similar
• Strong programming/scripting skills
• Mobile application analysis
• Frida
• Binary analysis (disassembly skills)
Company:
Bank of America is a financial institution that offers credit cards, home loans, and auto loan services. Founded in 1998, the company is headquartered in Charlotte, USA, with a team of 10001+ employees. The company is currently Late Stage.
About Bank of America Business
Sourced by ZipRecruiter
Industry
Finance and insurance
Company size
10,000+ Employees
Headquarters location
Charlotte, NC, US
Year founded
1998