Application Security Pentester, Specialist
The Vanguard Group
hackajob is collaborating with Vanguard to connect them with exceptional professionals for this role.
Leads and executes security assessments to identify, validate, and communicate security risks. Performs manual and automated penetration testing, conducts additional security assessments such as Secure Code Reviews and Dynamic Application Security Testing (DAST), and produces clear, actional reports for technical teams and leadership. Partners with IT and business stakeholders to assess risk, support remediation, and improve the organization’s overall security posture.
Core Responsibilities
Leads and executes penetration tests across a variety of technologies, including web applications, APIs, and AI-enabled systems. Performs manual and automated testing to identify, exploit, and validate vulnerabilities.
Conducts other security assessments as needed, including Secure Code Reviews and/or Dynamic Application Security Testing (DAST).
Develops detailed assessment reports and presents findings to technical teams and leadership. Coordinates security risk reporting and collaborates with IT sub-divisions, third-party partners, and business units to identify the impact of technology implementations on IT and business operations.
Contributes to the evolution of team processes, testing methodologies, standards, and best practices.
Maintains subject-matter expertise in common vulnerability classes and attack techniques (e.g., OWASP Top 10, OWASP Top 10 API, SANS Top 25), and remains familiar with relevant security frameworks (e.g., MITRE ATT&CK). Stays current on emerging threats, tools, and offensive security techniques.
Participates in special projects and performs other duties as assigned.
Qualifications
Minimum five years related work experience with three years experience in IT security or application development.
Undergraduate degree in related field or equivalent combination of training and experience.
Hands-on experience performing web application, API, and network penetration testing.
Preferred experience with Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) tooling.
Experience in on or more of the following a plus: cloud penetration testing, mobile penetration testing, AI red teaming
Proficiency in at least one programming or scripting language (e.g., Python, Java).
Preferred security certifications such as OffSec Certified Professional (OSCP), OffSec Web Assessor (OSWA), OffSec Web Expert (OSWE), GIAC Penetration Tester (GPEN), or GIAC Web Application Penetration Tester (GWAPT).
Special Factors
Sponsorship
Vanguard is not offering visa sponsorship for this position.
About Vanguard
At Vanguard, we don't just have a mission—we're on a mission.
To work for the long-term financial wellbeing of our clients. To lead through product and services that transform our clients' lives. To learn and develop our skills as individuals and as a team. From Malvern to Melbourne, our mission drives us forward and inspires us to be our best.
How We Work
Vanguard has implemented a hybrid working model for the majority of our crew members, designed to capture the benefits of enhanced flexibility while enabling in-person learning, collaboration, and connection. We believe our mission-driven and highly collaborative culture is a critical enabler to support long-term client outcomes and enrich the employee experience.
- ...with senior engineers and analysts to help ensure reliable SaaS security visibility and contribute to automation and platform... ...senior team members • Collaborate with SSPM analysts, IAM, and application teams to understand requirements • Support platform upgrades...Application
- ...for this role. We are seeking a Senior Manager, AI Runtime Security to lead the strategy, engineering, and operationalization of runtime... ...for building and scaling capabilities that protect AI applications and autonomous agents in production environments, including AI...Application
- ...configuration, implementation, and integration of new and existing technologies and tools. Want to work on a state-of-the-art mobile application with modern design, architecture and tools in a true agile environment? Come join our growing, enthusiastic, and talented Mobile...ApplicationWork experience placement
- ...visual storyteller to join our marketing team as a Digital Media Specialist. This role is ideal for someone who is passionate about... ...content using Adobe Premiere Pro and related Creative Cloud applications. Perform color correction, audio enhancement, motion graphics...ApplicationWork at office
- ...Artech Information Systems Job Description Job Title: Security Analyst Location: Pittsburgh, PA / Lake Mary, FL / Nashville, TN Duration... ...business-critical analysis to help with the implementation of application access requests and workflows across IAM, supporting access...ApplicationContract work
- ...new technologies and frameworks that are integral to Vanguard applications. AI‑Forward Engineering Culture: Be part of a team that actively... ...testing, including functionality, technical limitations, and security. Identifies potential solutions and approves technical...ApplicationWork experience placement
- ...Terraform templates AWS IAM Role updates, Permission boundary updates; Build access pathing framework for applications & users Creation and implementation of new security models Good understanding of Identity and Access mgmt providers, governance, tools and...Application
- ...hiring a creative, energetic, and detail-oriented Digital Media Specialist to join our marketing team. This role is ideal for someone... ...equipment. Edit photos and videos using Adobe Creative Cloud applications. Organize and maintain digital photo and video libraries...ApplicationWork at office
- ...level system analysis, design, development, and implementation of applications and databases, under general supervision. Role Summary... ...performance optimization, data integration, documentation, and secure development practices. This role also provides an opportunity...ApplicationWork experience placement
- ...Serverless Application Developer Design and develop robust serverless applications utilizing Python and AWS Lambda functions, implementing... .... Manage AWS infrastructure, including IAM roles, security groups, and resource allocation. Monitor application performance...Application
- ..., Node.js, Python, or Java Hands-on experience building UI applications with Angular, React, or Stencil Experience designing and operating... ...systems meet requirements for scalability, reliability, and security Drive improvements in architecture, tooling, and...ApplicationWork experience placement
- ...professionals for this role. In this role you will support daily operations, problem resolution, and risk mitigation for the Global Securities Lending Trading Desk. This role offers the opportunity to make a direct impact on Vanguard’s Global Securities Lending Program...Work experience placement
- ...and resolve hardware, software, network connectivity, VPN, and application issues. Support Microsoft Office 365, Outlook, Teams, and... ...conference room technology and audiovisual equipment. Ensure compliance with company IT policies and security standards....ApplicationContract workWork at office
$180k
...the company’s global operations — spanning cloud, data centers, applications, and shared services. This role oversees global infrastructure... ...engineering, ensuring that systems meet the performance, security, and regulatory expectations of both commercial and regulated...ApplicationLocal area- ...exceptional professionals for this role. The Manager of SaaS Security Posture Management (SSPM) is responsible for leading,... ...Engagement Serve as the primary operational SSPM interface for application owners, IAM, SOC, and GRC teams Participate in regular SaaS...ApplicationFor contractors
- ...delivery and asset performance. Equal Opportunity Employer Bentley is an equal opportunity employer and considers all qualified applicants for employment without regard to race, color, sex, sexual orientation, gender identity, disability, pregnancy, protected veteran...ApplicationWorldwide
- ...and cloud engineering support across all Collaboration Platform applications and platforms including Writer, Figma, Adobe Creative Cloud/... ...developing java/python based applications ensuring performance and security Familiar with OKTA/SSO Desktop support background...ApplicationShift work
- ...controlled, value‑driven way. Own the end‑to‑end Corporate Finance application portfolio, including design, build, integration, vendor... ...decisions. Ensure alignment with enterprise architecture, security, and risk standards; own issue resolution, root‑cause remediation...Application
- ...experience designing and implementing scalable solutions to identify ownership of and mitigate various security vulnerabilities in AWS resources used in cloud platforms, applications, and infrastructure. Details: Key Responsibilities: Identify ownership of AWS resources...Application
- ...Provide senior level design, development, and implementation of applications. Integrate third party products. Translate technical... ...understand and comply with Information Technology and Information Security policies and procedures and verify that deliverables meet requirements...Application
- ...infrastructure teams, this role will own the technical delivery of the application, from requirements to successful delivery into production and... .... This Teammate will adopt an agile yet stable and secure approach to development leveraging core engineering principles...ApplicationWork at officeRemote work
- ...professionals for this role. Provides expert level software and application development services, including the direction, evaluation,... ...optimize prompts for LLMs Implement safeguards to ensure secure, ethical AI responses Build APIs, microservices, and data integrations...Application
- ...to design, develop, test and maintain the various platforms and their integration with other systems. Assess opportunities for application and process improvements and prepare documentation outlining platform road map. Maintain, troubleshoot, optimize and enhance...Application3 days per week
- ...experience with ES5/ES6 Solid understanding and extensive experience with Git Experience with Spring Boot for Webservice Applications Experience with CI/CD Experience with tools like NgRx, Redux, RxJS, Angular CLI and/or NX Experience with NodeJS Experience...Application
- ...back-end services and implementing machine learning models. Experience with Node.js for building scalable APIs and server-side applications. Proficiency in front-end frameworks such as React and Angular to create responsive user interfaces. Familiarity with AWS...Application
- Description Job Overview The Security GRC Analyst role is to ensure the secure operation of the Credit Union’s computer systems, servers... ...better monitor and/or improve the security of all systems and applications in order to increase system and application stability and up-...Application
- ...Cloud Security Specialist At Customers Bank, we believe in working hard, working smart, working together to deliver memorable customer... ...veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also provide "...Work experience placementWork at officeLocal area
- ...level system analysis, design, development, and implementation of applications and databases. Integrates third party products. Translates... ...and complies with Information Technology and Information Security policies and procedures, and verifies that deliverables meet requirements...ApplicationWork experience placementFlexible hours
- ...projects for internal business groups, aiming to improve key business results. Leads the design and testing of new or enhanced applications that align to the overall business technology strategy. 4. Leads the implementation of business systems and software. Analyzes...ApplicationWork experience placement
- ...and managing public and private cloud infrastructure with AWS, EC2 and S3 resources Deploying and Automating AWS environment application using Cloud formation Template (CFT) scripts and created stack sets for deploying into different regions Developing APIs for consuming...ApplicationContract work
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Application Security Pentester, Specialist. Be the first to apply!
- cash applications coordinator Malvern, PA
- senior application security Malvern, PA
- cash application clerk Malvern, PA
- app Malvern, PA
- senior application administrator Malvern, PA
- cash app Malvern, PA
- cash application representative Malvern, PA
- app support Malvern, PA
- application development Malvern, PA
- lighting application specialist



