Senior Penetration Tester (Web/Mobile applications) Job at Accord Technologies Inc., Minnesota

YXBtYjZKV3E0ajhrRjB5L3FlUWJpcUlHNlE9PQ==
  • Accord Technologies Inc.
  • Minnesota

Job Description

Role: Senior Penetration Tester

Location: Minnetonka, MN (Hybrid- 3 Days a week)

Contract Duration: 12+ Months

Nbr of openings: 10

Position type : Contract

Mandatory: OWASP Top 10, NIST, and secure SDLC, DAST and SAST tools-Burp Suite, Metasploit, Acunetix, ZAP, Checkmarx, AppScan), Python, Java, PHP, Perl, Objective-C,SSL/TLS, TCP/IP, ACLs, routing, load balancing, LAMP, LEMP, and MEAN stack, AWS,Azure,
Certification is mandatory in OSCP / OSWA / CEH or SANS (GWAPT, GPEN, GWEB)





Key Responsibilities

  • Perform manual and automated penetration testing of web and mobile applications.
  • Lead security assessments using DAST and SAST tools (e.g., Burp Suite, ZAP, Checkmarx, AppScan, WebInspect, Acunetix ).
  • Evaluate and secure cloud environments ( AWS and Azure ) including EC2, S3, RDS, VNets, and Azure DevOps pipelines.
  • Conduct API security reviews, enforce secure coding practices, and validate implementations against best practices.
  • Perform code reviews in Python, Java, PHP, Perl, and Objective-C to identify vulnerabilities.
  • Provide architecture-level feedback on SSL/TLS, networking, load balancing, and ACL configurations.
  • Develop and maintain Application Security Programs with a focus on CI/CD integration and secure SDLC.
  • Lead scoping calls with stakeholders, define testing approaches, and present findings/reports.
  • Actively research emerging exploits and contribute to vulnerability discovery (e.g., CTF, Hack the Box).
  • Collaborate with engineering and product teams to ensure remediation strategies are adopted.

Required Skills

  • 10+ Years of experience.
  • Strong knowledge of OWASP Top 10, NIST, and secure SDLC.
  • Proficiency in penetration testing tools: Burp Suite, Metasploit, ZAP, Checkmarx, AppScan.
  • Hands-on cloud security expertise in AWS (EC2, S3, RDS, KMS) and Azure security architecture.
  • Strong programming background in Python, Java, PHP, Perl, Objective-C for code review and exploit development.
  • In-depth knowledge of network security concepts: SSL/TLS, TCP/IP, ACLs, routing, load balancing.
  • Familiarity with LAMP, LEMP, and MEAN stacks from a security perspective.
  • Excellent communication skills for both technical and business stakeholders.

Required Certifications

  • OSCP / OSWA / CEH, or SANS (GWAPT, GPEN, GWEB)

Job Tags

Full time, Contract work, Part time, Internship, Seasonal work, 3 days per week,

Similar Jobs

Choice Translating, Inc. and TravelingBrand Research

NC - French Interpreter - Freelance Job at Choice Translating, Inc. and TravelingBrand Research

 ...interpreters in North Carolina or other states for VRI/OPI opportunities &##127891; Qualifications Fully bilingual, fluent in French and English Technologically proficient (familiar with Google Meet, Microsoft Teams , etc.) High school diploma required;... 

  • Charlotte, NC
  • Full Time
  • 25 days ago

EōS Fitness

Fitness Manager Job at EōS Fitness

ES Fitness is seeking a highly motivated and sales driven leader to take on the role of Fitness Manager (Personal Training Sales and Team Management). This is a great position for someone who loves sales and is passionate helping our members achieve their health and...

  • Lake Elsinore, CA
  • Full Time
  • 22 days ago

Flora-Bama

Sound Engineer Job at Flora-Bama

 ...The Sound Engineer will have a love of music, ability to work in a fast moving environment and schooling or previous experience in sound engineering. This requires understanding the basics of a live performance and the importance of sound quality and control.... 

  • Pensacola, FL
  • Full Time
  • $17 per hour
  • 29 days ago
Apply Now
Job Summary
  • Location
    Minnesota
  • Job Type
    Full Time
  • Date Posted
    2026-06-18
  • Expiration date
    2026-07-18