AI Application Penetration Tester

About The Position

Requirements

• 6–8+ years of offensive security or penetration testing experience.
• Application Security Experience- Strong AppSec mindset and deep understanding of application-layer vulnerabilities.
• 4–5 years of Python development, including API-based testing and automation.

Responsibilities

• Experience performing application penetration tests targeting GenAI applications, LLMs, ML pipelines, and agentic AI systems.
• Evaluate AI‑related attack types including: Prompt injection & indirect prompt attacks Model evasion Inference abuse Misconfiguration of guardrails Vector Databases Lateral movement through AI‑connected systems
• Conduct manual and automated testing using BurpSuite, custom scripts, and adversarial AI tools as well as Assess and test applications using the OWASP Top 10 and other security frameworks.
• Ability to configure and use scanning tools and test harnesses and Manual exploitation skills to validate automated findings
• Use Python to automate attacks, craft payloads, analyze model responses, and test bypass techniques.
• Meeting with stakeholders to gather technical details and define scope for upcoming tests.
• Communicate risks, attack paths, and findings clearly to technical and business partners.
• Document vulnerabilities, exploitation steps, and recommendations in a clear and timely manner.
• Produce high‑quality written reports summarizing vulnerabilities and remediation guidance.

Benefits

• Medical, dental & vision
• Critical Illness, Accident, and Hospital
• 401(k) Retirement Plan – Pre-tax and Roth post-tax contributions available
• Life Insurance (Voluntary Life & AD&D for the employee and dependents)
• Short and long-term disability
• Health Spending Account (HSA)
• Transportation benefits
• Employee Assistance Program
• Time Off/Leave (PTO, Vacation or Sick Leave)