Remote Penetration Tester (QA Focused)

Redefine Security Testing in a Remote-First World

Does your curiosity naturally lead you to explore the boundaries of systems, searching for the one overlooked vulnerability? Here’s your chance to make a tangible difference, not just by finding bugs, but by ensuring safer digital experiences for organizations and their end users. As a Remote Penetration Tester (QA Focused), you’ll orchestrate security and quality assurance in tandem, where your expertise will drive confidence across every product release. This fully remote opportunity offers an annual salary of $119,895.

Your Mission: Influence Product Security and User Trust

From day one, your work will be integral to securing critical applications—your testing reports will directly shape security roadmaps and inform major engineering decisions. You’ll collaborate with QA, DevOps, and development teams to embed security best practices and inspire a culture of proactive defense. It’s more than “finding flaws”—you’ll empower the team to anticipate risk and prevent vulnerabilities before they reach production.

What Success Looks Like

Picture this: a high-profile product launch where stakeholders sleep easily because every scenario’s been tested, every loophole closed. You’ll:

• Simulate real-world attack vectors to reveal weaknesses that are often overlooked in conventional QA cycles, ensuring nothing slips through undetected.
• Translate complex technical findings into actionable recommendations—whether you’re demoing exploits to engineers or creating easy-to-digest Slack summaries for product leads.
• Guide remediation efforts and validate fixes, ensuring they truly resolve root issues rather than patching symptoms.
• Champion security education across the team—your brown-bag sessions or quick Loom videos simplify challenging concepts and motivate others to build with security in mind.

Impact Areas & Key Outcomes

Advanced Penetration Testing

Your proactive tests go beyond surface-level checks, uncovering vulnerabilities that automated scanners miss. You’ll influence architecture, not just bug lists. Every report you submit serves as a reference point for building smarter features and establishing secure-by-design standards.

Seamless QA Integration

You’re the bridge between functional QA and offensive security. Your insights will make automated and manual tests more resilient, raising the bar for what “secure” really means. You’ll harness tools like Burp Suite, OWASP ZAP, Kali Linux, and custom scripts to probe every nook of modern web and mobile apps.

Real-Time Remote Collaboration

We move fast, but you’ll always have the time and support to dive deeply into high-priority projects. You’ll partner with engineers, QA analysts, and even customer support, making sure security doesn’t get lost in translation. Our remote toolset encompasses Jira, Slack, and collaborative code reviews, ensuring your impact is felt regardless of where you log in.

Communication That Drives Change

You simplify complex security ideas, whether over a Zoom call, through a lucid Confluence page, or via a snappy Slack thread. Your findings influence risk prioritization, sprint planning, and even executive strategy discussions, as you ensure that everyone truly understands the “why” behind every recommendation.

The Tools & Environment

• Modern penetration testing frameworks (Burp Suite, Metasploit, nmap)
• Security automation and CI/CD integration
• Cloud infrastructure exposure (AWS, Azure, GCP)
• SAST/DAST solutions, custom scripting (Python, Bash)
• Remote QA collaboration tools—Jira, Slack, Notion, Confluence
• Supportive peer network that values thoughtful, well-communicated security work

What You Bring

• Proven expertise in ethical hacking, penetration testing, and vulnerability assessment—your reports make teams safer, not just more anxious
• Deep familiarity with web/mobile app architectures, cloud environments, and modern development lifecycles
• Genuine interest in both breaking and building—your feedback sparks better engineering, not finger-pointing
• Comfort with asynchronous remote work—you thrive independently, but love sharing discoveries and learning in real-time
• You communicate technical risk to all audiences, inspiring action, not fear

How You’ll Grow

Security threats evolve fast, and so will you. You’ll:

• Lead penetration test planning and scope definition alongside QA leads and product managers
• Mentor others through code reviews, security workshops, and real-world attack simulations
• Pilot new security testing tools, frameworks, and methodologies—always with a focus on practical outcomes
• Deepen your expertise in DevSecOps, secure SDLC, and compliance standards relevant to our industry

The Team & Culture

You’ll be surrounded by others who value curiosity, honesty, and accountability. Mistakes are learning opportunities—your experiments and creative approaches won’t just be tolerated, they’ll be encouraged. Our global team spans multiple time zones, diverse backgrounds, and varied experiences, but we all share a common goal: building trustworthy and robust products.

Ready to Redefine What Secure Really Means?

If you’re excited to drive lasting change, influence global security practices, and work at the intersection of QA and offensive security, this role was made for you. Let’s transform challenges into achievements, together.

Annual Salary: $119,895