Senior Penetration Tester
Drive the security of critical banking applications and platforms through hands-on offensive testing.
As an Assessments & Exercises Vice President in the Cybersecurity and Technology Controls organization, you will play a key role in safeguarding the firm's most vital assets.
Your primary responsibility will be to plan, execute, and report on penetration tests targeting high-impact applications, platforms, and services.
Leveraging industry-standard methodologies and advanced techniques, you will proactively identify vulnerabilities, collaborate with application owners to understand root causes, and guide effective remediation to strengthen the firm's security posture.
We are seeking candidates with a passion for offensive security, deep technical expertise in penetration testing, and a commitment to continuous learning and excellence.
Job responsibilities
* Plan, scope, and execute penetration testing engagements across a variety of environments, including web applications, APIs, cloud platforms, infrastructure, thick-client, and/or mobile applications.
* Collect and validate pre-requisites for each engagement, ensuring all necessary access, documentation, and approvals are in place.
* Perform manual and automated testing to identify vulnerabilities, misconfigurations, and security weaknesses, leveraging industry-standard tools and custom scripts.
* Document and communicate findings through comprehensive reports that include technical details, risk assessments, and actionable remediation recommendations.
* Conduct peer reviews of penetration test reports to ensure accuracy, consistency, and quality of deliverables.
* Collaborate with development, infrastructure, and security teams to clarify findings, support remediation efforts, and provide subject matter expertise on offensive security.
* Stay current with emerging threats, vulnerabilities, and attack techniques by leveraging threat intelligence, security research, and participation in relevant industry groups.
* Contribute to the continuous improvement of penetration testing methodologies, tools, and frameworks to enhance effectiveness and alignment with firm strategy and regulatory requirements.
Required qualifications, capabilities, and skills
* 5+ years of hands-on penetration testing experience in offensive security, with a proven track record of scoping, executing, and reporting on complex engagements.
* Expertise in manual penetration testing of web, API, cloud (AWS/Azure/GCP), infrastructure, thick-client, and/or mobile applications (android/iOS), including the use of industry-standard tools (e.g., Burp Suite, Nmap, Metasploit, etc.).
* Strong understanding of security assessment methodologies such as OWASP Top Ten, NIST Cybersecurity Framework, and other relevant standards.
* Ability to identify and articulate systemic security issues related to threats, vulnerabilities, and risks, and provide clear, actionable recommen...
- Rate: Not Specified
- Location: Washington, US-DC
- Type: Permanent
- Industry: Finance
- Recruiter: JPMorgan Chase Bank, N.A.
- Contact: Not Specified
- Email: to view click here
- Reference: 210692981
- Posted: 2025-12-18 07:57:55 -
- View all Jobs from JPMorgan Chase Bank, N.A.
More Jobs from JPMorgan Chase Bank, N.A.
- Lkw Fahrer – Nahverkehr an den Standorten Herford oder Bielefeld (m/w/d)
- Postbote für Pakete und Briefe – Minijob / Aushilfe / Abruf in Bad Oeynhausen (m/w/d)
- Contributing Field Specialist
- Problem-Solving Consulting Expert
- Intelligence Process Specialist
- Strategic Workflow Expert
- AI Engineering Specialist
- Evaluation Workflow Analyst
- Cognitive Behavior Expert
- Problem-Solving Trend Specialist
- AI Setup Analyst
- Model Process Expert
- Evaluation Principal Analyst
- Problem-Solving Principal Specialist
- Postbote für Pakete und Briefe in Lemgo (m/w/d)
- Model Senior Analyst
- Postbote für Pakete und Briefe in Lage (m/w/d)
- Postbote für Pakete und Briefe – Minijob / Aushilfe in Heide (m/w/d)
- AI Technical Expert
- Postbote für Pakete und Briefe in Leopoldshöhe (m/w/d)