ZipRecruiter

Log In

1

Web Pentester Jobs (NOW HIRING)

Orison

Penetration Tester

Reston, VA · On-site

... Set - Red team pentester * Network penetration testing and experience working with network ... Experience conducting web application security assessments * Experience working with a range of ...

GMV

Senior pentester

Naples, NC · On-site +1

$94K - $111K/yr

Web Application Security Analysis and Intrusion Testing * Vulnerability Management WHAT DO WE OFFER? * Join our team and culture GMV by entering into technological and innovative projects within ...

Salesforce

Product Security

San Francisco, CA · On-site

$69.25 - $92.50/hr

Preferred : • Offensive security certifications such as Offensive Security Certified Professional (OSCP), Offensive Security Web Expert (OSWE), or GIAC Web Application Pentester (GWAPT). • AWS ...

Salesforce

Product Security

Bellevue, WA · On-site

$66 - $88/hr

Preferred : • Offensive security certifications such as Offensive Security Certified Professional (OSCP), Offensive Security Web Expert (OSWE), or GIAC Web Application Pentester (GWAPT). • AWS ...

Bank of America

Senior Manual Ethical Hacker

Boston, MA

$108K - $140K/yr

Web APIs * Cloud environments * LLM security * Mobile application analysis * Able to manually ... Pentester Academy] * Strong programming/scripting skills * Frida * Binary analysis (disassembly ...

Bank of America

Senior Manual Ethical Hacker

Denver, CO · On-site

$102K - $132K/yr

Web APIs * Cloud environments * LLM security * Mobile application analysis * Able to manually ... Pentester Academy] * Strong programming/scripting skills * Frida * Binary analysis (disassembly ...

Bank of America

Senior Manual Ethical Hacker

Denver, CO

$102K - $132K/yr

Web APIs * Cloud environments * LLM security * Mobile application analysis * Able to manually ... Pentester Academy] * Strong programming/scripting skills * Frida * Binary analysis (disassembly ...

Bank of America

Senior Manual Ethical Hacker

Seattle, WA

$113K - $146K/yr

Web APIs * Cloud environments * LLM security * Mobile application analysis * Able to manually ... Pentester Academy] * Strong programming/scripting skills * Frida * Binary analysis (disassembly ...

Bank of America

Senior Manual Ethical Hacker

Chicago, IL

$103K - $132K/yr

Web APIs * Cloud environments * LLM security * Mobile application analysis * Able to manually ... Pentester Academy] * Strong programming/scripting skills * Frida * Binary analysis (disassembly ...

Bank of America

Senior Manual Ethical Hacker

Charlotte, NC · On-site

$97K - $126K/yr

Web APIs * Cloud environments * LLM security * Mobile application analysis * Able to manually ... Pentester Academy] * Strong programming/scripting skills * Frida * Binary analysis (disassembly ...

next page

Showing results 1-20

People also search for

All JobsWeb Pentester Jobs

Web Pentester information

See salary details

$39K

$80.9K

$144K

How much do web pentester jobs pay per year?

As of Jun 6, 2026, the average yearly pay for web pentester in the United States is $80,851.00, according to ZipRecruiter salary data. Most workers in this role earn between $55,000.00 and $94,500.00 per year, depending on experience, location, and employer.

What is the difference between Web Pentester vs Penetration Tester?

AspectWeb PentesterPenetration Tester
CertificationsCEH, OSCP, GPENCEH, OSCP, GPEN
Work EnvironmentFocus on web applications and APIsBroader scope including networks, systems, and applications
Industry UsagePrimarily in cybersecurity firms, tech companies, and consultingIn various sectors including finance, government, and tech
Search & Comparison IntentSpecific to web security testingGeneral security testing across multiple domains

Web Pentesters specialize in testing the security of web applications and APIs, often requiring certifications like CEH or OSCP. Penetration Testers have a broader scope, assessing networks, systems, and applications. While Web Pentesters focus on web-specific vulnerabilities, Penetration Testers perform comprehensive security assessments across various environments.

What are the key skills and qualifications needed to thrive as a Web Pentester, and why are they important?

To thrive as a Web Pentester, you need strong knowledge of web application security principles, programming languages (such as JavaScript, Python, or PHP), and common vulnerabilities like OWASP Top 10, often supported by certifications like OSCP or CEH. Familiarity with penetration testing tools such as Burp Suite, OWASP ZAP, and Metasploit is typically required. Analytical thinking, attention to detail, and effective communication are essential soft skills to report findings and collaborate with development teams. These skills and qualifications are crucial for identifying, documenting, and mitigating web security risks to protect organizations from cyber threats.

What are some common challenges Web Pentesters face when conducting assessments for large organizations?

Web Pentesters working with large organizations often encounter challenges such as complex web application architectures, diverse technology stacks, and strict security protocols that limit testing methods. Coordinating with multiple teams, ensuring minimal disruption to business operations, and navigating change management procedures can also add complexity to the assessment process. Additionally, staying updated with the latest vulnerabilities and tools is crucial due to the rapidly evolving security landscape. Clear communication and thorough documentation are essential to ensure findings are well understood and remediation steps are actionable.

What are web pentesters?

Web pentesters, or web penetration testers, are cybersecurity professionals who assess the security of web applications by simulating cyberattacks. Their main goal is to identify vulnerabilities that malicious hackers could exploit and provide recommendations to strengthen the application's defenses. They use a combination of automated tools and manual testing techniques to evaluate issues like SQL injection, cross-site scripting, and authentication flaws. Web pentesters play a crucial role in helping organizations protect sensitive data and maintain the trust of their users.
More about Web Pentester jobs
What job categories do people searching Web Pentester jobs look for? The top searched job categories for Web Pentester jobs are:
Web Pentester jobs near you
Infographic showing various Web Pentester job openings in the United States as of May 2026, with employment types broken down into 2% Internship, 1% As Needed, 93% Part Time, 3% Temporary, and 1% Nights. Highlights an 81% Physical, 3% Hybrid, and 16% Remote job distribution, with an average salary of $80,851 per year, or $38.9 per hour.

Junior Penetration Tester - Pentester

Praktikant / Werkstudent (w/m/d) Baumanagement

Alcolu, SC • On-site

Full-time

Medical

Posted 8 days ago

Job description

Company Description

Creating a future worth living for future generations gets us out of bed every morning. Depending on the project, we are consultants, implementers, or both for sustainable, innovative and economical solutions for real estate, industry, energy and infrastructure. Our 6,500 employees at over 70 locations worldwide support our customers in interdisciplinary teams. Our thinking is both visionary and realistic. We work independently and as part of a team. With passion and the latest technologies. We unite. Join us at Dreso and let's create a world we want to live in.

Job Description

We are seeking an Entry-Level Penetration Tester (Junior Pentester) to support our cybersecurity team in identifying and assessing security vulnerabilities across systems, networks, and applications. This role offers hands-on experience in offensive security practices and operates under the guidance of senior penetration testers. You will contribute to strengthening the organization's security posture by simulating real-world attack scenarios and supporting remediation activities.

Key Responsibilities

  • Conduct and support vulnerability assessments and penetration testing engagements across networks, systems, web applications, and cloud environments
  • Identify, validate, and document security vulnerabilities and misconfigurations
  • Assist in developing proof-of-concept (PoC) exploits and attack simulations
  • Prepare clear and structured reports detailing findings, impact, and remediation recommendations 
  • Collaborate with IT, DevOps, and security teams to track remediation activities
  • Maintain and configure penetration testing tools (e.g., Nmap, Burp Suite, Metasploit)
  • Stay up to date with emerging threats, vulnerabilities, and offensive security techniques 
Qualifications
  • Degree in Computer Science, Cybersecurity, Information Technology, or a related field 
  • At least one recognized penetration testing certification (CEH, OSCP, CompTIA PenTest+, GPEN) 
  • Basic understanding of:
    • Networking protocols (TCP/IP, DNS, HTTP)
    • Linux and Windows operating systems 
  • Internship or hands-on lab experience in penetration testing
  • Participation in CTFs (Capture the Flag) or bug bounty programs
  • Familiarity with cloud environments (Azure, AWS), security frameworks (e.g., OWASP, NIST) and penetration testing tools (Nmap, Burp Suite, Metasploit, Wireshark)
  • Understanding of vulnerability scanning and exploitation concepts
  • Basic scripting skills (Python, Bash, or PowerShell)
  • Understanding of common attack techniques (e.g., reconnaissance, privilege escalation)
  • Strong analytical and problem-solving abilities
  • Strong attention to detail when identifying vulnerabilities
  • Willingness to learn and adapt in a fast-evolving threat landscape
  • Ability to work both independently and as part of a team
  • Advanced English level (C1)
Additional Information
  • To ensure your work-life balance, we offer the option of mobile working
  • We promote your professional and personal development through individual training and further education at the Drees & Sommer Academy
  • We support your health with a bonus for sports enthusiasts. We offer the possibility of subscribing to a private health insurance policy
  • Employees benefit from tax advantages related to their commuting expenses for the office
  • Fiscal advantages for employees expenses in meal costs during the worktime. Employee referral program with attractive bonus scheme 
  • Supporting career and family by receiving tax benefits for kindergarten expenses

Apply