Penetration Tester - Application Security

Yarmouth, Maine | Bangor, Maine | Plano, Texas

• Conduct security assessments on networks, systems, and applications using manual and automated tools
• Evaluate the threat, risk, and impact of potential vulnerabilities
• Document and report potential vulnerabilities from security assessments
• Coordinate with cross-functional teams to manage vulnerability tracking processes and support vulnerability remediation
• Collaborate with teammates to learn, regularly share skills and foster team excellence
• Stay current on evolving threats, trends, tools, and techniques
• Perform other duties as assigned by the manager

• Bachelor's degree in Cybersecurity, Systems Engineering, Computer Science, Information Systems Management or related field
• At Least two years of related job experience in IT security
• Foundational understanding of the following security concepts:
• Application vulnerability assessments
• Common application and operating system weaknesses
• Penetration testing methodologies
• Perimeter security (firewalls, intrusion detection, etc.)
• Regulatory compliance standards: PCI-DSS, SOX, HIPAA
• Secure development concepts
• Basic programming knowledge of at least one language (e.g., C, C++, C#, Python, Java, J2EE)
• Strong interpersonal, verbal, and written communication skills
• Self-motivated with the ability to work independently and collaborate effectively in both team-based and remote environments
• Strong organizational skills with the ability to manage a wide range of tasks and adapt to shifting priorities
• Familiarity with common vulnerability databases and frameworks (e.g., OWASP Top 10, SANS Top 25, CVE, CVSS, CWE)
• Experience with security testing tools (e.g., BurpSuite, Kali Linux, SQLMap, Metasploit, Nmap)
• Currently hold or able to obtain offensive security certification(s) shortly upon hire (e.g., GWAPT, OSCP, CBBH, CPTS, GPEN, OSWA, GCPN)
• Experience with public-sector software products and cloud environments
• Demonstrated contributions to the security community (e.g., public CVEs, bug bounty acknowledgments, open-source projects, blogs, publications)
• Required to undergo and satisfactorily pass a fingerprint background check in accordance with CJIS requirements.

Come join us as we transform the public sector! Our mission, vision, and values guide everything we do. We're also frequently recognized as a great workplace locally and nationally. See our many awards and accolades.

Your health and well-being are important to us. That's why we invest in our team members by offering competitive benefits to support their health and financial wellness. Learn more about how we care for our people.

Tyler is subject to regulations, guidelines, and/or client requirements relating to the qualifications of Tyler personnel performing certain client work. Because of the nature of this position, it is a requirement that the candidate can successfully pass a federal background check at the time an offer is extended and over the course of employment with Tyler.