Senior Penetration Testing Specialist

🔥 11 minutes ago

🇺🇸 United States – Remote

💵 $100k - $130k / year

⏰ Full Time

🟠 Senior

👮‍♂️ Cybersecurity / Security Engineer

🦅 H1B Visa Sponsor

This company has sponsored H1B visas in the past.

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Aprio

WebsiteLinkedInAll Job Openings

1001 - 5000 employees

💸 Finance

🤝 B2B

☁️ SaaS

💰 Debt Financing on 2018-10

Finance • B2B • SaaS

Aprio is a comprehensive business advisory, tax, and accounting firm that provides a range of services across various industries including construction, dental, financial services, healthcare, manufacturing, and technology. They offer services such as business valuation, CFO advisory, succession planning, digital advisory, risk management, and compliance. Aprio is involved in areas like blockchain advisory, ERP and business applications, tax consulting, outsourced accounting, and wealth management. With a strong presence in over 50 countries, Aprio is committed to diversity and corporate social responsibility, continually innovating to meet the needs of their diverse clientele.

📋 Description

• Join Aprio's Risk Advisory and Assurance Services (RAAS) Team team and help clients maximize their opportunities. • Contribute to cutting-edge initiatives as we expand into CMMC, FedRAMP, PCI SSF. • Work on diverse, high-impact projects across a number of teams and industries. • Access unparalleled professional development through training, certifications, and hands-on experience with emerging technologies.

🎯 Requirements

• Minimum of 5 years' experience in penetration testing or a related cybersecurity role, with a focus on network, cloud infrastructure, web application, and API testing. • Expertise in network penetration testing, including assessment of protocols (e.g., TCP/IP, DNS, VPN), firewalls, and intrusion detection/prevention systems. • Hands-on experience with cloud security testing in platforms such as AWS, Azure, or GCP, and their cloud native solutions. • In-depth knowledge of web application penetration testing, covering OWASP Top 10 vulnerabilities (e.g., SQL injection, XSS, CSRF) and secure coding practices. • Strong proficiency in API security testing, including REST, SOAP, and GraphQL, with experience in identifying issues like broken authentication, excessive data exposure, and injection flaws. • Familiarity with common penetration testing tools such as Burp Suite, Metasploit, Nmap, Nessus, Wireshark, and Kali Linux. • Experience with scripting languages (e.g., Python, Bash, PowerShell) for automating tests or developing custom exploits. • Understanding of secure development lifecycle (SDLC) and DevSecOps practices to integrate security into CI/CD pipelines. • Strong analytical and problem-solving skills, with the ability to think like an attacker and identify complex attack chains. • Excellent communication skills to articulate technical findings to both technical and non-technical stakeholders in verbal and written form. • Bonus – OSCP, OSWE, CRTP, and other certifications that require hands on skills application to obtain are a huge plus.

🏖️ Benefits

• Medical, Dental, and Vision Insurance on the first day of employment • Flexible Spending Account and Dependent Care Account • 401k with Profit Sharing • 9+ holidays and discretionary time off structure • Parental Leave – coverage for both primary and secondary caregivers • Tuition Assistance Program and CPA support program with cash incentive upon completion • Discretionary incentive compensation based on firm, group and individual performance • Incentive compensation related to origination of new client sales • Top rated wellness program • Flexible working environment including remote and hybrid options