Cyber - Application Security Senior Penetration Tester jobs in United States
cer-icon
Apply on Employer Site
company-logo

Fiserv · 3 weeks ago

Cyber - Application Security Senior Penetration Tester

positionMilwaukee, Wisconsin
timeFull-time
remoteOnsite
senioritySenior Level, Lead/Staff
money$90K/yr - $158K/yr
date10+ years exp

Fiserv is a global leader in Fintech and payments, connecting financial institutions, corporations, merchants, and consumers. As a Senior Penetration Tester, you will lead assessments of various applications to enhance security and reduce risks, while also mentoring team members and providing guidance on secure coding practices.

Financial ServicesFinTechInformation ServicesInformation Technology
badNo H1BnoteU.S. Citizen Onlynote

Responsibilities

Perform thorough penetration testing across web applications, RESTful APIs, mobile applications (iOS/Android), and thick clients using manual and automated techniques to identify and exploit vulnerabilities
Develop and implement advanced penetration testing strategies, frameworks, and test plans tailored to different application architectures
Lead security assessments, execute exploit development and proof-of-concept creation, and validate remediation effectiveness
Provide technical guidance on remediation, secure coding practices, and risk mitigation to development and product teams
Monitor and respond to application security incidents; conduct root-cause analysis and drive corrective actions
Research and apply emerging tools, techniques, and threat intelligence to continuously improve testing coverage and automation
Mentor and support team members, promoting a culture of application security engineering and secure SDLC integration

Qualification

Penetration TestingVulnerability ResearchCloud Security AssessmentsSecure SDLC PracticesScriptingAutomationCI/CD IntegrationTechnical GuidanceThreat ModelingProfessional CertificationsMentoring

Required

10+ years of experience in application penetration testing for web applications, RESTful APIs, mobile applications, and thick clients using manual exploitation and advanced assessment techniques
10+ years of experience in vulnerability research, exploit development, binary analysis, and proof-of-concept development
8+ years of experience in cloud and container security assessments (AWS, Azure, GCP, Docker, Kubernetes) for cloud-native applications
8+ years of experience with secure SDLC practices, threat modeling, and application security standards (OWASP Top 10, NIST, SANS) and compliance frameworks (e.g., PCI DSS)
8+ years of experience integrating security into CI/CD and IaC pipelines, and testing automation (Jenkins, GitHub Actions, Terraform)
6+ years of experience with scripting and automation (Python, Bash), and hands-on use of tools such as Burp Suite, Metasploit, MobSF, Postman, and fuzzing frameworks
6+ years of equivalent combination of educational background, related experience, and/or military experience

Preferred

Experience working in the financial services industry with secure application development and regulatory/compliance requirements
Professional certifications such as OSCP, GWAPT, CPENT, or equivalent
Experience applying LLMs and automation for vulnerability discovery, exploit generation, or security testing orchestration
Hands-on experience with SAST/DAST/SCA platforms (e.g., Veracode, Checkmarx, Fortify) and integrating findings into developer workflows
Proven experience mentoring engineers and collaborating with product, engineering, and risk teams to operationalize application security

Benefits

Fuel Your Life program to support physical, financial, social, and emotional well-being.
Paid holidays and generous time away policies.
No-cost mental health support through Employee Assistance Programs.
Living Proof program to recognize your peers’ extra effort with points used for rewards.
Eight Employee Resource Groups to foster a collaborative culture.
Unparalleled professional growth with training, development, and internal mobility opportunities.
Retirement planning and discounted shares with the Employee Stock Purchase Plan.
Medical, dental, vision, life, and disability insurance options available day one.
Tuition assistance and reimbursement program.
Paid parental, caregiver, and military leave.

Company

Fiserv

twittertwittertwitter
Glassdoor3.1
company-logo
Fiserv is a provider of technology solutions to the financial services industry.
dateFounded in 1984
location
Brookfield, Wisconsin, USA
people-size10001+ employees
web-link
http://www.fiserv.com

Funding

Current Stage
Public Company
Total Funding
$2.48B
Key Investors
BlackBird Financial LP
2026-01-06Post Ipo Equity
2025-04-29Post Ipo Debt· $2.48B
1986-10-03IPO

Leadership Team

leader-logo
Michael Lyons
President and CEO-Elect, Fiserv
linkedin
leader-logo
Robert Hau
EVP, CFO
linkedin

Recent News

thefly.com
Fiserv collaborates with Microsoft to accelerate AI-driven innovation
2026-01-09
Payments Dive
How payments will evolve: 6 industry trends to watch in 2026
2026-01-07
womenentrepreneursreview.com
Marizanne Kapp Backs Delhi Capitals for Strong WPL Season
2026-01-07
Company data provided by crunchbase