Talent.com
Senior Web Application Penetration Tester – Cybersecurity
Senior Web Application Penetration Tester – CybersecurityMatch Point Solutions • Oakland, California, USA
Senior Web Application Penetration Tester – Cybersecurity

Senior Web Application Penetration Tester – Cybersecurity

Match Point Solutions • Oakland, California, USA
[job_card.variable_days_ago]
[job_preview.job_type]
  • [job_card.full_time]
[job_card.job_description]

MatchPoint Solutions is a fast-growing young energetic global IT-Engineering services company with clients across the US . We provide technology solutions to various clients like Uber Robinhood Netflix Airbnb Google Sephora and more! More recently we have expanded to working internationally in Canada China Ireland UK Brazil and India . Through our culture of innovation we inspire build and deliver business results from idea to outcome. We keep our clients on the cutting edge of the latest technologies and provide solutions by using industry-specific best practices and expertise.

We are excited to be continuously expanding our team. If you are interested in this position please send over your updated resume. We look forward to hearing from you!

Job Description

Position : Senior Web Application Penetration Tester Cybersecurity

Location : Remote - Working PST hours candidates located in PST are HIGHLY preferred

Contract : 12 months

Rate : $85 to $90 / hr on w2

  • The Senior Web Application Penetration Tester is responsible for identifying security vulnerabilities in internally developed and third-party web applications used across the Utility. This role focuses exclusively on application-layer security testing helping ensure that customer-facing and internal web applications are resilient against real-world threats. The position works closely with application development cloud and security teams to reduce risk and improve secure development practices.

Key Responsibilities

  • Web Application & API Penetration Testing
  • Conduct manual and automated penetration testing of web applications and RESTful APIs
  • Identify and exploit common and advanced web vulnerabilities (e.g. OWASP Top 10 business logic flaws)
  • Test authentication authorization session management and access controls
  • Perform API security testing including authorization bypass mass assignment and input validation flaws
  • Assess application security across development test and production environments (as authorized) Secure SDLC & Collaboration
  • Partner with application development and DevSecOps teams to integrate security testing into the SDLC
  • Provide guidance on secure coding practices and vulnerability remediation
  • Support threat modeling and design reviews for new or enhanced applications Reporting & Risk Communication
  • Produce detailed penetration test reports with clear reproduction steps and remediation recommendations
  • Communicate risk in business-appropriate language for technical and non-technical stakeholders
  • Validate remediation through follow-up testing and re-assessments Tools & Techniques
  • Use industry-standard tools such as Burp Suite OWASP ZAP Postman and custom scripts
  • Leverage manual testing techniques to identify business logic and workflow vulnerabilities
  • Stay current on emerging web application attack techniques and defenses Required Qualifications
  • 6 years of cybersecurity experience with a strong focus on web application penetration testing
  • Demonstrated experience testing modern web applications and APIs
  • Strong understanding of HTTP / S REST JSON authentication mechanisms and web architectures
  • Proficiency with tools such as Burp Suite Pro and API testing tools
  • Working knowledge of at least one scripting or programming language (e.g. Python JavaScript or PowerShell)
  • Strong written and verbal communication skills
  • Preferred Qualifications
  • Experience testing customer-facing applications in regulated environments
  • Familiarity with cloud-hosted applications and CI / CD pipelines
  • Knowledge of OWASP ASVS SAMM or similar application security standards
  • Certifications such as OSCP GWAPT OSWE or similar

    • MatchPoint Solutions provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race color religion age sex national origin disability status genetics protected veteran status sexual orientation gender identity or expression or any other characteristic protected by federal state or local laws.

    This policy applies to all terms and conditions of employment including recruiting hiring placement promotion termination layoff recall transfer leaves of absence compensation and training.

    Key Skills

    Asset,Front Desk,Banking & Finance,Jboss,Accident Investigation,Chemistry

    Employment Type : Full Time

    Experience : years

    Vacancy : 1

    [job_alerts.create_a_job]

    Senior Web Application Penetration Tester Cybersecurity • Oakland, California, USA

    [internal_linking.similar_jobs]
    Web Application Penetration Tester Cybersecurity

    Web Application Penetration Tester Cybersecurity

    Match Point Solutions • Oakland, CA, United States
    [job_card.full_time]
    [filters_job_card.quick_apply]
    MatchPoint Solutions is a fast-growing, young, energetic global IT-Engineering services company with clients across the US . We provide technology solutions to various clients like...[show_more]
    [last_updated.last_updated_variable_days]
    Senior Web Application Penetration Testing Specialist

    Senior Web Application Penetration Testing Specialist

    KPMG • San Francisco, CA, United States
    [job_card.full_time]
    KPMG's Advisory practice is experiencing rapid growth, and we are excited to meet the increasing client demand.In this dynamic market, our professionals need to be adaptable and thrive in a team-or...[show_more]
    [last_updated.last_updated_less] • [promoted] • [new]
    Senior Application Cybersecurity Engineer

    Senior Application Cybersecurity Engineer

    Gallup • San Francisco, CA, United States
    [job_card.full_time]
    Anticipate attacks, outsmart threats and safeguard innovation.Gallup is seeking a senior application cybersecurity engineer who thrives at the intersection of engineering and security.You'll apply ...[show_more]
    [last_updated.last_updated_1_hour] • [promoted] • [new]
    Senior Cybersecurity Course Creator

    Senior Cybersecurity Course Creator

    Practical DevSecOps • San Francisco, CA, United States
    [job_card.full_time]
    Senior Cybersecurity Course Creator at Practical DevSecOps.Senior Cybersecurity Course Creator.Practical DevSecOps (a Hysn Technologies Inc. Our online training focuses on modern areas of cybersecur...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Internal Penetration Tester

    Internal Penetration Tester

    VirtualVocations • Oakland, California, United States
    [job_card.full_time]
    A company is looking for an Internal Penetration Tester to join a high-impact cybersecurity team in a fully remote role.Key Responsibilities Conduct internal penetration tests across Windows and ...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Remote Product Tester - $25-45 per hour

    Remote Product Tester - $25-45 per hour

    Online Consumer Panels America • Richmond, California, US
    [filters.remote]
    [job_card.part_time] +1
    Product Testers are wanted to work from home nationwide in the US to fulfill upcoming contracts with national and international companies. We guarantee 15-25 hours per week with an hourly pay of bet...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Lead Penetration Tester

    Lead Penetration Tester

    Labelbox • San Francisco, CA, United States
    [job_card.full_time]
    This role focuses on replicating adversary behavior, documenting findings clearly, and validating mitigation strategies.Conduct penetration tests across applications, networks, and cloud systems.Id...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Usage Tester - Work From Home - $45 per hour

    Usage Tester - Work From Home - $45 per hour

    GL1 • Richmond, California
    [filters.remote]
    [job_card.part_time] +1
    Product Testers are wanted to work from home nationwide in the US to fulfill upcoming contracts with national and international companies. We guarantee 15-25 hours per week with an hourly pay of bet...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Remote Investment Analyst – AI Trainer ($50-$60 / hour)

    Remote Investment Analyst – AI Trainer ($50-$60 / hour)

    Data Annotation • Emeryville, California, United States
    [filters.remote]
    [job_card.full_time] +1
    We are looking for a finance professional to join our team to train AI models.You will measure the progress of these AI chatbots, evaluate their logic, and solve problems to improve the quality of ...[show_more]
    [last_updated.last_updated_variable_hours] • [promoted] • [new]
    Wells Fargo - Senior Premier Banker Half Moon Bay (Remote - hybrid)

    Wells Fargo - Senior Premier Banker Half Moon Bay (Remote - hybrid)

    WELLS FARGO BANK • HALF MOON BAY, California, United States of America
    [filters.remote]
    [job_card.full_time] +1
    Are you looking for more? Find it here.At Wells Fargo, we're more than a financial services leader - we're a global trailblazer committed to driving innovation, empowering communities, and helping ...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Communications Specialist (7477U) - Center for Long-Term Cybersecurity

    Communications Specialist (7477U) - Center for Long-Term Cybersecurity

    University of California-Berkeley • Berkeley, CA, United States
    [job_card.full_time] +1
    At the University of California, Berkeley, we are dedicated to fostering a community where everyone feels welcome and can thrive. Our culture of openness, freedom and belonging make it a special pla...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Product Tester (Work From Home) – Keep Free Products + Weekly Pay

    Product Tester (Work From Home) – Keep Free Products + Weekly Pay

    OCPA • Las Lomitas, Texas, us
    [filters.remote]
    [job_card.part_time] +1
    Product Testers are wanted to work from home nationwide in the US to fulfill upcoming contracts with national and international companies. We guarantee 15-25 hours per week with an hourly pay of bet...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Cyber SDC - WAM Penetration Tester - Senior - Location OPEN

    Cyber SDC - WAM Penetration Tester - Senior - Location OPEN

    EY • San Francisco, CA, United States
    [job_card.full_time]
    Cyber SDC - WAM Penetration Tester - Senior.Cyber threats, social media, massive data storage, privacy requirements and continuity of the business as usual require heavy information security measur...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Travel Behavioral Health Tech - $1,010 per week in Vallejo, CA

    Travel Behavioral Health Tech - $1,010 per week in Vallejo, CA

    AlliedTravelCareers • Vallejo, CA, US
    [job_card.full_time]
    AlliedTravelCareers is working with Triage Staffing LLC to find a qualified Behavioral Health Tech in Vallejo, California, 94503!. Travel Long Term Care : Behavioral Health Tech Vallejo.Shift Details...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Instructor Pool Online Data Analytics, Data Science, Software Development

    Instructor Pool Online Data Analytics, Data Science, Software Development

    InsideHigherEd • Berkeley, California, United States
    [job_card.part_time]
    Instructor Pool Online Data Analytics, Data Science, Software Development, and Cybersecurity Programs UC Berkeley Extension. Instructor (Non-Senate, Non-Tenure Track).The compensation model varies...[show_more]
    [last_updated.last_updated_1_day] • [promoted]
    Senior Web & API Penetration Tester

    Senior Web & API Penetration Tester

    KPMG US • San Francisco, CA, United States
    [job_card.full_time]
    A leading consulting firm in San Francisco is seeking a Senior Specialist, Web Application Penetration Tester to conduct detailed application penetration tests across various platforms.The ideal ca...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Senior Penetration Tester - Web / API & Red Team Lead

    Senior Penetration Tester - Web / API & Red Team Lead

    Ernst & Young Oman • San Francisco, CA, United States
    [job_card.full_time]
    A global leader in assurance and consulting is seeking a Cybersecurity – Attack and Penetration Tester to lead the implementation of security solutions. The role requires at least 5 years of experie...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Senior Software Engineer(Frontend & Mobile)

    Senior Software Engineer(Frontend & Mobile)

    PG Forsta • Emeryville, CA, United States
    [job_card.full_time]
    Press Ganey is the leading experience measurement, data analytics, and insights provider for complex industries-a status we earned over decades of deep partnership with clients to help them underst...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]