Source Job

US

  • Plan and execute penetration tests across applications, networks, and cloud infrastructure, producing detailed reports for technical and executive audiences.
  • Own remediation follow-through by translating findings into security engineering work items, and design controls across Azure, Okta, and other platforms.
  • Support ISC2's ISO/IEC 27001 ISMS program and continuously improve detection and hardening through automation and threat intelligence.

Penetration Testing Cloud Security Cybersecurity

10 jobs similar to Security Engineer, Penetration Testing

Jobs ranked by similarity.

US

  • Perform offensive security assessments on cloud infrastructure, web applications, APIs, and traditional networks for clients across various industries.
  • Develop detailed penetration testing documentation and collaborate with teams to integrate security into CI/CD pipelines.
  • Contribute to building a new offensive security service line within a top-rated CPA and advisory firm.

Aprio is a top 20 CPA-led advisory firm serving fast-growing industries with expertise in assurance, tax, and advisory services. The firm has over 3,200 team members across 40+ offices globally, and is recognized as a Best Place to Work with a collaborative culture.

United States

  • Perform penetration testing and design reviews to identify vulnerabilities and insecure designs.
  • Maintain and build internal tools to automate security efforts, including SAST and DAST testing.
  • Identify vulnerabilities, demonstrate business impact, and articulate risk to drive prioritization.

Brex is the intelligent finance platform that enables companies to spend smarter and move faster in over 200 markets. With tens of thousands of customers including DoorDash, Coinbase, and Zoom, Brex fosters a diverse and inclusive team culture where collaboration with some of the brightest minds in the industry is key.

US

  • Lead penetration testing across web apps, APIs, and infrastructure.
  • Deliver detailed reports with proof-of-concept exploitation scenarios.
  • Mentor junior consultants and contribute to security research.

VerTALENTS is a subsidiary of VerSprite Cybersecurity that specializes in technology staffing, connecting top technical talent with clients. They work with clients to fill both full-time and contracting opportunities, adding value to both clients and candidates.

United States

  • Perform scoped and open-ended assessments on internal and external facing systems.
  • Perform threat and vulnerability research to identify new ways of achieving the program’s mission.
  • Work with the customer Blue Team to identify gaps, address findings, and improve breach response.

Cyber Advisors is a rapidly growing Cybersecurity Consulting firm that simulates real-world attacks to uncover vulnerabilities. They believe in inclusion, employee development, and have a caring, happy culture where people feel valued.

Brazil

  • Execute penetration tests across web applications, APIs, and infrastructure environments, gaining autonomy in delivery and execution.
  • Perform security assessments including Web Pentest, API Pentest, and Infrastructure/Active Directory testing.
  • Participate in Red Team exercises, applying Tactics, Techniques, and Procedures aligned with real-world threat scenarios.

Jobgether is an AI-powered job matching platform that connects candidates with hiring companies. It uses technology to ensure fair and efficient application reviews, with a focus on matching top-fitting candidates to roles.

UK

  • Lead penetration testing engagements on applications with complex technology stacks, working independently and collaboratively.
  • Contextualize vulnerabilities and assess realistic impact to clients, ensuring quality reports and services are delivered efficiently.
  • Maintain strong depth of knowledge in application security and mentor teammates while collaborating with project managers and delivery teams.

Coalfire is a cybersecurity firm that helps clients navigate complex security challenges through advisory, assessment, and automation services. The company is headquartered in Chicago with offices across the U.S. and U.K., and supports clients worldwide with a team of passionate cybersecurity experts.

Global Unlimited PTO

  • Perform hands-on web application penetration tests on real customer applications to find vulnerabilities.
  • Identify coverage gaps in autonomous testing and manually reproduce edge cases for product improvement.
  • Partner with engineers to translate findings into product coverage and build regression test cases.

Horizon3.ai is a cybersecurity company that provides the NodeZero platform for autonomous penetration testing. They are a fast-growing, remote team of former U.S. Special Operations cyber operators, startup engineers, and cybersecurity practitioners committed to a culture of respect, collaboration, ownership, and results.

Global Unlimited PTO

  • Conduct threat modelling reviews of Technical Design Documents (TDDs) and provide actionable security recommendations early in the design process.
  • Perform application security assessments, including penetration testing, vulnerability assessments, and proof-of-concept development.
  • Investigate, triage, and respond to Bug Bounty program submissions, validating findings and driving timely remediation with engineering teams.

MoonPay is a unified payments platform for digital currency. Trusted by over 30 million customers and over 500 ecosystem partners, the company is committed to building a fairer, more open financial system with a culture of accountability and inclusivity.

US

  • You will own small-to-medium engineering projects end-to-end, configure and operate security controls, and partner with senior engineers on larger initiatives.
  • You will develop deepening expertise in at least one control domain such as identity, endpoint, vulnerability management, or cloud security.
  • You will produce clean operational documentation, participate in change reviews, and mentor associate engineers on day-to-day execution.

Aprio is a Top 20 CPA and advisory firm that provides proven expertise and strategic foresight for fast-growing industries. The firm has over 40 U.S. office locations and more than 3,200 team members globally, with a top-rated culture focused on growth and innovation.

US

  • Lead implementation and optimization of AppSec tools such as SAST, DAST, and SCA across client environments.
  • Conduct manual application and API security assessments, identifying vulnerabilities and recommending remediation strategies.
  • Advise clients on secure SDLC practices and integrate security tools into CI/CD pipelines.

The company is a cybersecurity consulting firm that helps organizations design and operationalize application security programs. It operates with a remote-first culture and a collaborative, client-facing team.