Find JobsSalary EstimateCareer AdviceUpload ResumeEmployers / Post JobProfileMessage Center

Penetration Tester

Abotts Consulting

Wilmington, DE

Apply
JOB DETAILS
SALARY
$110 Per Year
JOB TYPE
Full-time, Employee
SKILLS
Amazon Elastic Compute Cloud (EC2), Amazon Relational Database Service (RDS), Amazon Simple Storage Service (S3), Amazon Web Services (AWS), Application Programming Interface (API), Applications Security, Banking Services, Best Practices, Cloud Computing, Code Reviews, Communication Skills, Computer Programming, Computer Security, Continuous Deployment/Delivery, Continuous Integration, DevOps, GPEN - GIAC Penetration Tester, HP WebInspect, IBM Rational AppScan, Internet Application, Java, LAMP (Linux Apache MySQL PHP/Perl/Python), Load Balancing, Metasploit, Microsoft Windows Azure, Mobile Applications, Network Security, Objective-C Programming Language, PHP Scripting Language (PHP Hypertext Preprocessor), Penetration Testing, Perl Programming Language, Python Programming/Scripting Language, SSL-TLS (Secure Socket Layer - Transport Layer Security), Secure Coding, Security Analysis, Security Architecture, Software Administration, Software Development, Software Development Lifecycle (SDLC), TCP/IP (Transmission Control Protocol/Internet Protocol), Test Automation
LOCATION
Wilmington, DE
POSTED
9 days ago
Role: Penetration Tester
Location: Wilmington, DE (Hybrid- 3 Days a week)
Rate: $110 KPA (Fulltime)
Customer: Confidential Domain: Banking
Key Responsibilities
Perform manual and automated penetration testing of web and mobile applications.
Lead security assessments using DAST and SAST tools (e.g., Burp Suite, ZAP, Checkmarx, AppScan, WebInspect, Acunetix).
Evaluate and secure cloud environments (AWS and Azure) including EC2, S3, RDS, VNets, and Azure DevOps pipelines.
Conduct API security reviews, enforce secure coding practices, and validate implementations against best practices.
Perform code reviews in Python, Java, PHP, Perl, and Objective-C to identify vulnerabilities.
Provide architecture-level feedback on SSL/TLS, networking, load balancing, and ACL configurations.
Develop and maintain Application Security Programs with a focus on CI/CD integration and secure SDLC.
Lead scoping calls with stakeholders, define testing approaches, and present f indings/reports.
Actively research emerging exploits and contribute to vulnerability discovery (e.g., CTF, Hack the Box).
Collaborate with engineering and product teams to ensure remediation strategies are adopted.
Required Skills
8+ Years of experience.
Strong knowledge of OWASP Top 10, NIST, and secure SDLC.
Proficiency in penetration testing tools: Burp Suite, Metasploit, ZAP, Checkmarx, AppScan.
Hands-on cloud security expertise in AWS (EC2, S3, RDS, KMS) and Azure security architecture.
Strong programming background in Python, Java, PHP, Perl, Objective-C for code review and exploit development.
In-depth knowledge of network security concepts: SSL/TLS, TCP/IP, ACLs, routing, load balancing.
Familiarity with LAMP, LEMP, and MEAN stacks from a security perspective.
Excellent communication skills for both technical and business stakeholders.
Required Certifications OSCP / OSWA, or SANS (GWAPT, GPEN, GWEB)

About the Company

A

Abotts Consulting

INDUSTRY
Computer/IT Services