[Remote] Security Consultant II (Web Application Penetration Tester)

Work from home Full-time role Hiring

Note: The job is a remote job and is open to candidates in USA. NetSPI is a leader in Penetration Testing as a Service (PTaaS) and is seeking a skilled Security Consultant II to conduct thorough security assessments and identify vulnerabilities in web applications. The role involves delivering actionable reports and contributing to the development of security best practices.

Responsibilities

Conduct penetration testing engagements on web applications and underlying APIs
Create, deliver, and collaborate on penetration testing reports in diverse client environments, maintaining client-specific processes, reporting standards, and access protocols to help improve their security posture
Research and develop innovative techniques, tools, and methodologies for penetration testing services, alongside commitment to improvement and execution on NetSPI specific products and processes
Perform administrative tasks related to day-to-day consulting activities to ensure smooth business and engagement operations

Skills

Bachelor's degree or higher required, with a concentration in Computer Science, Engineering, Math, or IT preferred, or equivalent experience
Minimum of 2-3 years of work experience in application penetration testing
Familiarity with offensive tools, based on applicable skillset (e.g., Kali Linux, Burp Suite, Metasploit, Nessus)
Familiarity with offensive and defensive IT concepts and protocols
Extensive understanding of the OWASP Top 10 and various security frameworks
Working knowledge of Windows, Linux and MacOS operating systems internals
Ability to work independently and as part of a team
Proficient communication skills, both written and verbal
Willingness to travel up to 5-10%
This position requires an 8-hour workday, with occasional evenings or weekends necessary to meet project deadlines or critical needs
Experience mentoring or coaching to growing team members, while sharing knowledge externally through blogs, hosting webinars, or presenting at conferences
Experience in one or more of the following programming or scripting languages (e.g., Ruby, Python, Perl, C, C++, Java, and C#)
Offensive cybersecurity certifications (e.g., GXPN, GPEN, OSCP, CISSP, GWAPT)

Company Overview

NetSPI is a cybersecurity company that offers enterprise security testing and attack surface management services. It was founded in 2001, and is headquartered in Minneapolis, Minnesota, USA, with a workforce of 501-1000 employees. Its website is https://www.netspi.com.

Company H1B Sponsorship

NetSPI has a track record of offering H1B sponsorships, with 1 in 2025, 3 in 2024, 1 in 2023, 2 in 2022, 5 in 2021, 5 in 2020. Please note that this does not guarantee sponsorship for this specific role.

Apply Now

[Remote] Security Consultant II (Web Application Penetration Tester)

More open positions

[Remote] Analyst I Business Process Transactions

[Remote] Technical Program Management Engineer

[Remote] Virtual Sales Representative

[Remote] Sr. Machine Learning Engineer, Core Engineering

[Remote] Product Marketing Manager

Senior Software Engineer (L3) - Full Stack

Dispatch Core 2 Agent

Account Executive

Part-Time Remote Customer Operations Associate – careerzynith Ignition Interlock Service & Support Specialist

[Remote] Licensed Insurance- Sales Agent, P&C (Remote)

HR Leader (Services) #1508

Remote Customer Service Representative – Home‑Based Support Specialist for careerzynith’s Global Client Experience Team

Senior Affiliate Partnership Manager

Senior Manager, Clinical Monitoring Oversight

Product Owner/Manager - Homebuilding Industry

Senior Business Analyst – Business Solution (Robotics & Process Automation)

Recruiting Coordinator (Contract)

Influencer Marketing Manager | US Market | Based in EU

Product Designer II, Assistant

Experienced Remote Live Chat Support Specialist – Customer Service Representative | careerzynith

Inbound Sales Closer – Remote