Senior Manual Ethical Hacker
Bank of America ATM
Job Description At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day. Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammates’ physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve. Bank of America is committed to an in‑office culture with specific requirements for office‑based attendance and a flexible arrangement based on role‑specific considerations. At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us! Manual Ethical Hacking is part of the Application Development Security Framework Program within Bank of America’s Cyber Security Assurance Offensive Security group. The program provides services to assess the security resilience of the bank’s applications to malicious hacking activity. This senior technical role is responsible for performing and leading ethical hacking assessments of the bank’s technologies, applications and cyber security controls while adapting testing methods to evolving and emerging threats. It involves leading and performing research, understanding the bank’s security policies, working with appropriate partners to complete assessments and simulations, identifying misconfigurations and vulnerabilities, and reporting on associated risk. These individuals partner closely with security partners, CIO clients and multiple lines of business. They are expected to perform application security‑oriented dynamic and static assessments across a multitude of technologies including web UI, web APIs, mobile and cloud, including associated source code. Key Responsibilities (in order of importance) Perform assigned analysis of internal and external threats on information systems and predict future threat behaviour. Incorporate threat actors’ tactics, techniques, and procedures into offensive security testing to identify high‑value vulnerabilities or chained attacks. Develop proof‑of‑concepts for exploitation. Perform assessments of the security, effectiveness and practicality of multiple technology systems. Leverage innovative thinking to help solve problems or introduce new ideas to processes or products applicable to offensive security. Prepare and present detailed technical information for various media including documents, reports, and notifications. Provide clear and practical advice regarding managing risks. Learn and develop advanced technical and leadership skills, mentor Junior and Intermediate assessors in technical tradecraft and soft skills. Respond to security incidents and provide technical assistance to leadership across the Information Security organization. Required Skills Minimum of 5+ years of professional pentesting, application security or ethical hacking experience, preferably in a large, complex, enterprise environment. Detailed technical knowledge in at least five of the following areas: Security engineering Application architecture Authentication and security protocols Application session management Applied cryptography Common communication protocols Mobile frameworks Single sign‑on technologies Exploit automation platforms Web APIs Cloud environments LLM security Mobile application analysis Able to manually identify and reproduce findings, discuss remediation concepts, develop PoCs for vulnerabilities, use scripting/coding techniques, proficiently execute common penetration testing tools, triage and support incidents, and produce high‑value findings. Experience performing manual web application assessments (i.e., must be able to simulate an OWASP Top 10 vulnerability without the use of tools). Experience performing manual code reviews for security‑relevant issues. Experience working with DAST and SAST tools to identify vulnerabilities. Knowledge of network and web‑related protocols/technologies (e.g., UNIX/LINUX, TCP/IP, cookies). Experience with vulnerability assessment tools and penetration testing techniques. Solid programming/debugging skills, development frameworks, CVE and CWE research/reproduction. Threat analysis, threat modelling and SBOM analysis. Innovative thinking, threat actor simulation. Technology systems assessment. Technical documentation. Advisory. Desired Skills CEH, OSCP/OSCE/OSWE/GXPN/GPEN/GWAPT/GMOB, all practitioner certificates (including Port Swigger BSP Academy) / cloud certifications / eWPT; eWPTX; eMAPT (INE Pentester Academy). Strong programming/scripting skills. Frida. Binary analysis (disassembly skills). Soft Skills Advisory Innovative thinking Technical documentation Technology system assessment Threat analysis Adaptability Collaboration Scenario planning and analysis Test engineering Written communication Attention to detail Information systems management Incident management Presentation skills Prioritization This job will be open and accepting applications for a minimum of seven days from the date it was posted. Shift 1st shift (United States of America) Hours Per Week 40 #J-18808-Ljbffr Bank of America
$160k - $205k
Job Description Manual Ethical Hacking is part of the Application Development Security Framework Program within Bank of America's Cyber Security... ...the bank's applications to malicious hacking activity. This senior technical role is responsible for performing and leading...SeniorShift workDay shift$160k - $205k
Koitecc Solutions is seeking a Senior Ethical Hacker to join their Cyber Security Assurance team. This role involves performing and leading ethical hacking assessments, predicting future threats, and mentoring junior assessors. The ideal candidate will have at least 5 years...Senior- A multinational financial institution is seeking a Senior Ethical Hacker in Seattle, WA. The role involves conducting security assessments,... ...protocols, and the ability to perform advanced assessments manually. This position supports a commitment to responsible growth...Senior
$187k - $220k
...Senior Penetration Tester Join us in building the future of finance. Our mission is... ...a high-performing, fast-moving team with ethics at the center of everything we do. Expectations... ...Go and Python), design reviews, and manual penetration testing of web applications,...SeniorWork at officeFlexible hoursShift work3 days per week$95.86k - $208.27k
...Advisory. KPMG is currently seeking a Senior Specialist, MAST Application Penetration... ...practice. Responsibilities: Conduct manual application penetration testing against... ...and Checkmarx One or more major ethical hacking certifications not required but preferred...SeniorH1bLocal area$1,400 per month
...standards. You will collaborate closely with the development team to identify and report bugs or issues, while also performing both manual and automated testing. Ideal candidates will have previous experience in software testing and possess strong attention to detail...Visa sponsorship$139.5k - $258.1k
...Senior Security Engineer - Red Team We are the Apple Services Engineering (ASE) Security Red Team. We focus on deep technical security... ...more of those years conducting security reviews ~2+ years of manually reviewing source code to assist in finding vulnerabilities ~...SeniorRelocationShift work- ICS Global Soft, Inc.: Senior QA Tester (Remote) with Security Clearance Position: Senior QA Tester Location: Washington, DC (Remote) Duration... ...effective strategies and test plans. Executing test cases (manual or automated) and analyzing results. Evaluating product code...SeniorRemote jobContract work
- ...satisfaction. We would love to talk with you regarding the next step in your career. Come join our team! Zantech is looking for a talented Senior Information System Security Officer to be responsible for the most complex systems and serves as the Cybersecurity Division's...SeniorContract work
- ...Job Title: Senior Information Systems Security Officer Location: Ft. Washington, MD Clearance: TS Required Travel: Minimal Description: Senior Information Systems Security Officer with a deep understanding of implementing various security measures to protect an organization...Senior
- ...vulnerability management platforms, security testing frameworks, and DevSecOps practices—you know which tools to use and when automation beats manual review Excellent communication skills that allow you to translate complex security concepts into clear recommendations for both...Full timeLocal areaFlexible hours
- ...Trinnex seeks a Senior Cyber Security Analyst to join the security team, focusing on safeguarding the software systems critical to water utilities. This role involves securing the development lifecycle and collaborating with teams to ensure applications are resilient...Senior
$27.64 - $37.4 per hour
...then this could be a great opportunity for you! As part of our Quality Control Group, the Software Tester provides user support and manual testing of the company’s proprietary applications. This includes the development and execution of test cases, identifying and...Hourly payFull timeWork at officeLocal areaShift work3 days per week- Outline of the Role: The scope of work includes conducting in-depth business and systems analyses that clearly outline functional and technical requirements in partnership with Product Manager, through discovery, impact assessment, implementation, testing, go live and...SeniorWork experience placement
- ...Senior Director, Principal Gifts About the Company Philanthropic organization supporting Indigenous culture & individuals Industry Non-Profit Organization Management Type Non Profit Founded 2017 Employees 11-50 Categories...Senior
- Dev9 is looking for a full-time Software Development Engineer in Test (SDET) to provide custom software and cloud-based solutions. Ideal candidates should have 4-6 years of experience with C#, familiarity with Java, and exposure to containers and modern web frameworks. ...SeniorFull time
$153.6k - $192k
Brex is seeking a Senior GRC Engineer in Seattle to drive critical Governance, Risk, and Compliance processes. This role involves automating security controls and building integrations to maintain compliance as Brex expands. Candidates should have over 5 years of experience...Senior- Trinnex in Seattle is seeking a Senior Cyber Security Analyst to safeguard critical software systems for water utilities. This role emphasizes securing the software development lifecycle and addressing vulnerabilities, ensuring resilience against evolving threats. You...Senior
$82.7k - $129.8k
...enable the business - and where risks could impact customers, revenue, and operations. Amazon's Internal Audit team is seeking a Senior IT Auditor to lead high-impact audits across a diverse portfolio of businesses, including: - Devices & Services (e.g., Alexa-...SeniorFlexible hours- DocuSign, Inc. is seeking a Senior IT Auditor to autonomously execute enterprise‑wide IT, operational and regulatory audits. You will work with business leaders and IT management to plan, test, and document controls across the SDLC, access management, cyber security, and...SeniorWork at office
$175k - $308.5k
...Senior Security Engineer Apple Services Engineering (ASE), the team behind iCloud services and the infrastructure that powers it, is looking for a Senior Security Engineer to partner with engineering teams working on new products and features. You will collaborate...SeniorRelocation$166k - $220k
Security Engineer Anduril Industries is a defense technology company with a mission to transform U.S. and allied military capabilities with advanced technology. By bringing the expertise, technology, and business model of the 21st century's most innovative companies...SeniorFull timeWork experience placementImmediate start- Bristol-Myers Squibb is seeking a Senior Principal Scientist in Cancer Immunology at their Seattle location. The successful candidate will lead discovery teams in developing innovative cancer therapies and collaborate with external partners. Ideal applicants should possess...Senior
- Slalom Build is seeking a Senior Principal to lead its Marketing, Advertising & Experience (MAX) capability in Seattle. In this role, you will shape marketing strategies and engage with clients to drive customer growth and media effectiveness. The ideal candidate will...Senior
$142.5k - $190k
JPMorgan Chase in Seattle is seeking a Technology Support Lead to provide critical support within the Cybersecurity Incident Management team. This role involves managing cybersecurity incidents, executing firm-wide strategies, and enhancing technological resilience. Ideal...Senior- A leading technology company in Seattle is seeking a Senior Software Engineer to manage identities for applications and services in a secure manner. The role involves defining security requirements and influencing security protocols. Candidates should have over 7 years...Senior
$135k - $143k
...best practices. Collaboration & Communication Collaborate with senior management, IT teams, and business stakeholders to communicate... ...certifications (e.g., Zscaler, CrowdStrike, Splunk) Certified Ethical Hacker (CEH) GIAC certifications (e.g., GSEC, GCIA, GCSH) Must meet...SeniorCasual workRemote workFlexible hours- A leading IT System Integrator is seeking a Performance Tester in Seattle to assist in a data center migration project. This role requires expertise in Load Runner and strong SQL skills. As a Software Development Engineer in Test (SDET), you will work on critical IT projects...Senior
- A leading technology company in Seattle is seeking a skilled Hardware Architect - Information Security to establish and manage security hardware vision. The ideal candidate will have extensive experience in hardware development and the ability to work collaboratively with...Senior
- A leading tech firm is looking for a Senior Principal Engineer to lead platform architecture and strategic planning. In this role, you will define the technical vision across multiple engineering organizations, ensuring a seamless integration of product systems. Ideal...SeniorRemote job
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Senior Manual Ethical Hacker. Be the first to apply!
- senior trade analyst Seattle, WA
- senior app developer Seattle, WA
- senior customer service advisor Seattle, WA
- senior international account manager Seattle, WA
- senior product manager mobile Seattle, WA
- senior magento developer Seattle, WA
- senior quantitative risk analyst Seattle, WA
- senior business development director Seattle, WA
- sr marketing manager Seattle, WA
- sr technical product manager Seattle, WA

