Penetration Tester (Mobile, API & Application Security)

US Bank

Hybrid

Quick summary

Work type
Hybrid
Location
Irving, TX
Salary
$105,400–$124,000 / yr
Posted
6 days ago
Nearby
99+ roles within 25 mi

Market check

Salary context

Below market

How this pay compares to similar roles

Similar $179k
This role $115k
$92k most similar roles pay here $230k

This role pays less than 92% of similar roles. Most pay $142,450–$215,531 — the shaded band above. At the midpoint, this role pays about $115k versus about $179k for comparable roles.

Based on 239 similar postings.

Employer

About US Bank

U.S. Bank (U.S. Bancorp) is the fifth-largest bank in the United States, providing retail banking, corporate and commercial banking, wealth management, and payment services to millions of customers. Industry: Banking & Financial Services

US Bank currently has 34 open roles on FindRole.

Listed pay typically runs $119,765–$140,900 across 34 roles with salary data.

Most-posted roles

View all roles at US Bank

At a glance

TL;DR · Penetration Tester (Mobile, API & Application Security)

Apply Now Log in to save

As a Penetration Tester at U.S., you will join an elite team dedicated to enhancing enterprise information security by conducting thorough assessments of mobile, API, web, and AI-enabled applications. Your daily tasks include identifying vulnerabilities through manual and tool-assisted testing, documenting findings with clear risk ratings and remediation recommendations, and collaborating on process improvements and knowledge sharing within the team. You will leverage tools like Burp Suite, Postman, Nmap, and Metasploit to perform comprehensive security assessments while staying updated on emerging threats in AI and application security. The role requires a strong background in mobile application security, web and API penetration testing, cloud environments such as AWS or Azure, and technical foundations including HTTP/S and authentication protocols. Ideal candidates possess hands-on experience with Python scripting and have familiarity with ethical AI security practices.

Skills

OWASP MASVS MASTG Burp Suite Postman AWS Azure Python HTTP OAuth JWT Nmap Metasploit Kali Linux Android iOS API Security Web Application Security AI Security Machine Learning Security Prompt Injection Data Leakage Secure Development Change Management Vulnerability Management ServiceNow

What you'll do

  • Perform penetration testing on mobile (Android and iOS), API, and web applications using manual and automated techniques.
  • Identify security vulnerabilities and demonstrate impact through controlled exploitation when necessary.
  • Document findings with risk ratings and remediation recommendations for stakeholders.
  • Apply established testing methodologies and standards while continuously improving practical skills.
  • Research emerging threats and apply knowledge of AI-related risks during assessments.

What we're looking for

  • 5+ years of experience in information security.
  • 3+ years of hands-on mobile application penetration testing experience.
  • Proficiency with OWASP MASVS and MASTG for mobile app security.
  • Practical understanding of the OWASP Top 10 and API Security Top 10.
  • Experience identifying and exploiting vulnerabilities in web and API applications.
  • Familiarity with cloud environments (AWS, Azure) and containerized application architectures.
  • Working knowledge of HTTP/S, authentication protocols, and networking concepts.

Related searches

More Penetration Tester jobs Penetration Tester jobs in Irving All jobs at US Bank

More like this

Similar roles

Application Security Testing Manager

3M

Remote (Us, Texas, Austin, US) 19 days ago $188,251$230,084
SAST DAST SCA Azure DevOps GitHub OWASP Top 10 NIST CI/CD Cloud-Native Architectures Threat Modeling Secure Coding Standards Application Security Testing Tools Vulnerability Management Incident Response Security Governance Metrics and Dashboards
Remote
Save

AVP, Penetration Tester

LPL Financial

Fort Mill, SC +5 7 days ago $122,570$204,249
OWASP MITRE ATT&CK Burp Suite Kali Linux Nessus Accunetix Metasploit AWS Azure Python .NET JavaScript Java PowerShell Perl Ruby Bash Linux macOS Windows CI/CD
Save

AVP, Penetration Tester

LPL Financial

Fort Mill, SC +5 7 days ago $122,570$204,249
OWASP MITRE ATT&CK Burp Suite Kali Linux Nessus Accunetix Metasploit Python .NET JavaScript Java PowerShell Perl Ruby Bash Linux macOS Windows AWS Azure Kubernetes Docker PostgreSQL CI/CD
Save

Application Security Engineer

Booz Allen Hamilton

Washington, DC 18 days ago $62,000$141,000
Java Python .NET C# Burp Suite OWASP Veracode Eclipse JDeveloper Visual Studio NIST 800-53 FIPS FedRAMP Linux UNIX SD Elements OWASP ZAP IAST
Save

Lead Engineer, Penetration Tester

Target

Remote (7000 Target Pkwy N,Ncd-0375 Brooklyn Park,Mn 55445, US) 32 days ago $132,000$238,000
Burp Suite Nmap Metasploit Python Go CI/CD Linux Mentorship Threat Modeling PCI Compliance Web Application Security Penetration Testing Red Team Operations Bug Bounty Programs Networking Systems Architecture Mac Windows Cross-Functional Collaboration
Remote
Save

API Security Engineer

Fiserv

Berkeley Heights, NJ 2 days ago $110,000$186,000
API OAuth2 OIDC JWT RateLimiting SchemaValidation WAF ServiceMesh CI/CD Git OpenAPI SaltSecurity Traceable ThreatModeling NIST ISO27001 PCI_DSS FAPI OWASP DevSecOps SAST DAST API_Tests Fuzzing Metrics Logs Traces CISSP
Save