Senior Web Application Penetration Tester

SixGen, Inc.Annapolis, MD
$100,000 - $135,000Remote
Match Resume

About The Position

We are seeking a Senior Web Application Penetration Tester to join our growing team. As a Senior Web Application Penetration Tester, you will be challenged to perform endpoint discovery, open source research, web application enumeration, and novel vulnerability analysis/exploitation. This is much more than Burp scans; operators routinely develop custom tooling (in languages such as PHP, Java, and Python) and achieve a deep understanding of target infrastructure/technology in exploitation paths. The assessments are usually a long haul and great for advanced bug bounty hunters who enjoy getting deep in the weeds. Some cloud/Active Directory experience is a plus for post exploitation activities. This role resides in our Delivery Department and reports to our VP of Cyber Operations. This position is remote with a 10% travel requirement. SIXGEN supports cyber and intelligence missions by serving government and commercial organizations as they overcome global cybersecurity challenges. Our highly skilled operators conduct research and assessments based on real-world threats. We simulate adversaries and malicious actors to report details and actionable findings on critical assets and infrastructures. Our program planners advise mission owners to bring rapid solutions to intelligence mission leaders. Using innovative processes, tools, and techniques, we predict and overcome cybersecurity vulnerabilities. Our successes are supported by our diverse team of experienced, technical talent. SIXGEN is growing our support to mission by adding an ambitious Strategic Management Consultant to our team. SIXGEN, Inc. is an Equal Opportunity/Veterans/Disabled Employer.

Requirements

  • Ability to participate in cybersecurity control testing engagements for the customer's network, websites, apps and cloud technologies.
  • 5 years of Web Application Penetration Tester experience.
  • OSCP, OSWA, OSWE, CRTO, CBBH, GWAPT, or other relevant, hands-on certification. OSCP preferred.
  • Must have experience in web application penetration testing.
  • Knowledge of FISMA and NIST 800 series standards.
  • Experience in network mapping, vulnerability scanning, and penetration and web application testing.
  • Experience using approved test protocols and procedures to conduct network and application-level penetration tests.
  • Experience attending client meetings, recording internal and technical client interviews and preserving the contents of reports and memoranda.
  • Proficiency in using scanning tools like Nessus and NMap, as well as penetration tools like the Kali Linux suite, Burpsuite and Metasploit.
  • Must be willing to travel as needed.
  • Must be able to obtain Secret Clearance.
  • Experience in script writing and crafting of payloads.

Nice To Haves

  • Some cloud/Active Directory experience is a plus for post exploitation activities.

Responsibilities

  • Conduct assessments of web applications, mobile applications, databases, client-side applications and tools, and APIs.
  • Collaborate with team members and clients to define project scopes, business cases, review test results, and determine remediation steps.
  • Analyze security findings, including risk analysis and root cause analysis.
  • Draft reports and communicate complex security concepts and test findings to clients and stakeholders.
  • Participate in client meetings, communicate clearly and openly on incremental progress, and inform the team of any help needed on impediments and roadblocks.
  • Generate comprehensive reports, including detailed findings, exploitation procedures, and mitigation.

Benefits

  • Competitive salary
  • Employer-paid health insurance premiums (medical, dental, vision)
  • Employer-paid short/long term disability insurance and basic life/AD&D insurance
  • 401K with a 4% employer contribution
  • Professional development reimbursement options available (training, certification, education, etc)
  • Flexible and remote work policies for most positions
  • Paid Time Off (PTO) at a rate of three (3) weeks plus one (1) day per year of service up to four (4) weeks annually
  • 11 paid holidays per calendar year

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Senior

Education Level

No Education Listed

Job Search Resources

Similar Senior Web Application Penetration Tester job opportunities

🔥 New JobWeb Application Penetration Tester
KirkpatrickPrice
KirkpatrickPrice1d • Remote
Senior Penetration Tester
ASSYST, Inc.
ASSYST, Inc. • Baltimore, MD1d • Hybrid
Senior Penetration Tester
Accenture Federal Services
Accenture Federal Services • Arlington, VA10d
Senior Penetration Tester
Accenture Federal Services
Accenture Federal Services • Arlington, VA9d • $116,900 - $243,100
Senior Penetration Tester
Strata Information Group
Strata Information Group10d • Hybrid
Senior Penetration Tester
CoStar Group
CoStar Group • Arlington, TX1d • Hybrid

Tools

Templates & Examples

Resources

Comparisons

Company

Over 4 Million Users
Free AI tools and resources to help you land your next job, faster
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service