Unisys · 14 hours ago
Penetration Tester
Rockville, MD
Contract
Onsite
Senior Level
5+ years expUnisys is seeking a Senior Pentester / AppSec Engineer to enhance application security practices throughout the software development life cycle. The role involves evaluating security vulnerabilities, conducting manual penetration testing, and integrating security practices into the CI/CD pipeline to support DevSecOps initiatives.
Enterprise SoftwareSoftwareProfessional ServicesInformation TechnologyBusiness DevelopmentInformation ServicesManagement Information Systems
Hiring Manager
Peruka Sagar
Responsibilities
Plan, coordinate and implement application security practices in each phase of software development life cycle though testing, remediation support, tool evaluation, etc
This role involves in evaluating security vulnerabilities, security tools, implementing security solutions, and leveraging latest solutions to secure code review capabilities
Perform security assessments and manual penetration testing using tools such as Burp Suite and other proxy tools
Triage static (SAST), dynamic (DAST), interactive (IAST) analysis results to identify, prioritize and remediate security vulnerabilities
Integrate security practices into C/CD pipeline to support DevSecOps initiative
Maintain documentation of security findings, remediation plans, and compliance requirements
Develop and interpret security policies and procedures Participate in security compliance efforts
Develop and deliver training materials and perform general security awareness and specific security technology training
Evaluate and recommend new and emerging security products and technologies
Leverage GenAI technologies to scale application security reviews and automate code analysis
Evaluate various application security tools/capabilities i.e., SAST,DAST, IaC, Secrets detection tools
Stay current with emerging security threats and countermeasures
Ability to train or explain the common security issues to raise the security awareness among developers and assurance engineers
Perform AWS configuration reviews
Qualification
Required
5+ years of experience required in Cyber security and application security
Familiarity with SAST, DAST, IAST tools
Understanding of AWS is required
Deep understanding of OWASP top issues and remediation guidelines
Strong experience and detailed technical knowledge in security engineering, system and network security, authentication and security protocols, cryptography, and application security
Consistent implementation of security solutions
Experience in infrastructure or application-level vulnerability testing and auditing
Preferred
Proficiency in one or more programming language (Java, Python, JavaScript is preferred)
Understanding of CI/CD tools such as Jenkins and GITLAB
Familiarity with GenAI tools is a plus
Candidates with software development background is a plus
Certifications like GWAPT, OSWE, Burp Suite Certified Practitioner are good to have
Company
Unisys
Unisys is a worldwide information technology company. They provide a portfolio of IT services, software, and technology that solves
10001+ employees
H1B Sponsorship
Unisys has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (43)
2024 (47)
2023 (24)
2022 (21)
2021 (21)
2020 (25)
Funding
Current Stage
Public CompanyTotal Funding
$1.19B2025-06-16Post Ipo Debt· $700M
2020-10-29Post Ipo Debt· $485M
2010-01-19Acquired
Leadership Team
Mike Thomson
CEO & President
Raj R Raman
CTO, Cloud
Recent News
2026-02-12
Company data provided by crunchbase