PenTester II - Application Security Focused
Posted: 06/18/2025
Job Type: Permanent
Industry: Computer and Mathematical
Our client, a leader in the cybersecurity industry, is seeking a PenTester II to join their team. This role is a key part of the Application Security team, supporting various critical projects. The ideal candidate will possess strong communication skills, demonstrate creativity, and exhibit a self-starter attitude, ensuring a successful fit within the organization.
Location & Compensation:
Location: 5 DAYS A WEEK ONSITE IN WASHINGTON D.C. (Union Market District)
Pay Range: $140,000 - $160,000/yr
What You'll Do:
As a PenTester II, your responsibilities will include:
- Conducting technical assessments of web and mobile applications, including detailed penetration testing and vulnerability scanning.
- Performing in-depth source code reviews and providing expert security consulting based on your findings.
- Implementing both static (SAST) and dynamic (DAST) security testing techniques.
- Validating security controls specifically around web resources and mobile applications.
- Developing comprehensive and accurate reports and presentations tailored for various stakeholders.
What You'll Bring:
We're looking for candidates with:
- 3+ years of experience actively performing application penetration tests or equivalent relevant experience.
- A comprehensive background spanning application, network, and system security.
- Experience utilizing industry-standard security testing tools such as Burp Suite Pro.
- Proficiency with DAST/SAST/SCA tools like OWASP ZAP and Fortify Static Code Analyzer.
- Experience with reading, writing, and editing code across various programming languages.
Why Join This Team?
This opportunity offers:
- The chance to work on a long-term contract with the potential for renewal.
- Support for continuous improvement and professional development.
- The opportunity to engage in innovative research and knowledge sharing within a collaborative team environment.
- A focus on team ownership in a highly collaborative setting.
- The ability to contribute to meaningful projects that significantly enhance application security.
Benefits:
Upon completion of the waiting period, consultants become eligible for a comprehensive benefits package, including:
- Medical and Prescription Drug Plans
- Dental Plan
- Vision Plan
- Health Savings Account
- Health Flexible Spending Account
- Dependent Care Flexible Spending Account
- Supplemental Life Insurance
- Short Term and Long Term Disability Insurance
- Business Travel Insurance
- 401(k), Plus Match
- Weekly Pay
If this role piques your interest and you'd like to learn more, simply click "apply now." A recruiter will be in touch to discuss this exciting opportunity. We look forward to speaking with you!
Job Features
Job Category | Security |
Cloud Security Engineer - GCP/AWS
Location: Sunrise, FL / Atlanta, GA (primary) / Phoenix, AZ (primary) / Salt Lake City, UT / Silicon Valley - Palo Alto, CA / NYC, NY - Hybrid Description: 6+ months
We are seeking a Cloud Security Engineer with expertise in GCP/AWS to join our client's Cloud Security Engineering team. This role is a hybrid position, offering flexibility across multiple key locations.
About the Role:
The Cloud Security Engineering team is focused on hands-on engineering, particularly in the realm of policy creation. You will be responsible for developing, implementing, and managing robust security policies and procedures specifically for GCP environments, ensuring adherence to compliance standards and industry best practices.
A key aspect of this role involves leveraging Terraform Sentinel to create and enforce policy-as-code, guaranteeing that IaC (Infrastructure as Code) aligns with stringent security requirements.
Within the engineering function, you'll play a vital role in designing and implementing security controls to safeguard cloud-based applications and data. This includes conducting regular security assessments and scans to proactively identify and mitigate potential risks.
This team deeply engages with certifying public cloud provider services. You'll have the opportunity to become a Subject Matter Expert (SME) on various services and tools, defining configuration baselines before promoting their use across the broader organization.
Must-Have Skills & Experience:
Candidates should possess the following core competencies:
- Terraform Sentinel
- GCP Security
- OPA Gatekeeper
- Github
You can specialize in the IAM, Cloud, Data, or Network Domain.
Required Skills & Experience:
- Minimum of 3 years of experience in cloud security engineering, with a strong emphasis on GCP.
- Proficiency in Terraform and Terraform Sentinel for implementing policy-as-code.
- A strong understanding of GCP services and security best practices.
- Experience with established security frameworks and compliance standards (e.g., CIS, NIST, ISO 27001).
- Knowledge of network security, identity and access management (IAM), and encryption.
Nice-to-Have Skills & Experience:
- Certifications: GCP Professional Cloud Security Engineer, Certified Information Systems Security Professional (CISSP), or similar credentials.
- Experience with other cloud platforms, such as AWS and Azure.
- Automation: Experience with CI/CD pipelines and other automation tools.
Benefits:
Comprehensive benefit packages for this role begin on the 31st day of employment. These include:
- Medical, Dental, and Vision Insurance
- HSA, FSA, and DCFSA account options
- 401k retirement account access with employer matching
- Paid sick leave and/or other paid time off as required by applicable law
Job Features
Job Category | Security |
Posted: 06/18/2025 Job Type: Contract Industry: Engineering
Our client, a leading technology firm, is looking for a CyberArk and Zscaler Security Engineer to join their team. In this role, you'll be an integral part of the Security Operations team, contributing to various critical initiatives. The ideal candidate will demonstrate strong problem-solving skills, excellent communication abilities, and a collaborative mindset, ensuring a successful fit within the organization.
Location: Remote Contract: W2
About the Role:
As a CyberArk and Zscaler Security Engineer, you'll be responsible for:
- Managing, administering, and maintaining the CyberArk Privileged Access Management platform.
- Onboarding privileged accounts and configuring safes, platforms, and policies within CyberArk.
- Conducting periodic access reviews and audits to ensure compliance with internal and regulatory standards.
- Supporting the deployment and configuration of Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA).
- Collaborating with various stakeholders to integrate CyberArk with diverse enterprise systems and applications.
What We're Looking For:
We're seeking candidates with:
- Strong hands-on experience with CyberArk Core PAS, including vault management and account onboarding.
- Working knowledge of Zscaler ZIA and ZPA platforms.
- Experience with network security, access controls, and identity management.
- Proficiency in scripting (PowerShell, Python) for automation and integration tasks.
- CyberArk or Zscaler certifications are considered a plus.
Why Join This Team?
This opportunity offers:
- The chance to work with cutting-edge security technologies.
- A collaborative and inclusive work environment.
- Valuable professional development and growth opportunities.
- Engagement in meaningful projects that will directly impact the organization.
- A healthy work-life balance through remote work flexibility.
Benefits After Waiting Period:
Eligible consultants can access a comprehensive benefits package, including:
- Medical and Prescription Drug Plans
- Dental Plan
- Vision Plan
- Health Savings Account
- Health Flexible Spending Account
- Dependent Care Flexible Spending Account
- Supplemental Life Insurance
- Short Term and Long Term Disability Insurance
- Business Travel Insurance
- 401(k), Plus Match
- Weekly Pay
Job Features
Job Category | Security |
Privilege Access Management (PAM) Engineer
Our client, a prominent technology solutions provider, is looking for a Privilege Access Management Engineer to join their security team. This role is crucial for supporting vital access management initiatives. We're seeking an individual with exceptional problem-solving abilities, strong communication skills, and a collaborative spirit that aligns well with the organization's culture.
Location: Plano, TX (Onsite – 5 Days/Week)
Pay Rate: $50-57/hour on W2 Only
Citizenship Requirement: U.S. Citizen or Green Card Holder
About the Opportunity:
We're actively seeking a highly skilled Privilege Access Management (PAM) Engineer for our team in Plano, TX. This position is perfect for a security-focused technologist who possesses a robust background in PAM tools and cloud platforms, and who excels in a dynamic, agile environment.
Key Responsibilities:
As a PAM Engineer, your responsibilities will include:
- Designing, implementing, and managing PAM solutions, leveraging tools such as HashiCorp Vault, CyberArk, and BeyondTrust.
- Developing automation scripts using PowerShell, Python, JavaScript, and Terraform.
- Collaborating with development and security teams to seamlessly integrate PAM into CI/CD pipelines.
- Ensuring application resiliency and adherence to security best practices across various cloud platforms (AWS, Azure, GCP).
- Actively participating in the full Software Development Life Cycle (SDLC) and agile ceremonies.
- Contributing to application development and deployment efforts utilizing modern DevOps practices.
Required Qualifications:
Candidates should possess the following:
- A minimum of 4 years of experience within the Privilege Access Management domain.
- Proficiency in scripting and automation, specifically with PowerShell, Python, JavaScript, and Terraform.
- A strong grasp of Agile methodologies, CI/CD, and cloud-native development principles.
- Demonstrated experience with leading cloud platforms including AWS, Azure, or GCP.
- Familiarity with application security, resiliency, and test-driven development.
- Proficiency in at least one general-purpose programming language.
Preferred Skills:
Ideal candidates may also have:
- Experience with DevSecOps practices.
- Knowledge of compliance frameworks such as NIST, ISO, and SOC2.
- Exceptional communication and collaboration abilities.
Why This Role?
Join us and you'll have the opportunity to:
- Work on cutting-edge security solutions.
- Collaborate with a high-performing, agile team.
- Grow professionally in a cloud-first, security-driven environment.
If this role aligns with your career aspirations and you're eager to learn more, click "apply now." A recruiter will reach out to discuss this excellent opportunity. We look forward to connecting with you!
Job Features
Job Category | Security |