Remote Penetration Tester (QA Focused)
Redefine Security Testing in a Remote-First World
Does your curiosity naturally lead you to explore the boundaries of systems, searching for the one overlooked vulnerability? Hereâs your chance to make a tangible difference, not just by finding bugs, but by ensuring safer digital experiences for organizations and their end users. As a Remote Penetration Tester (QA Focused), youâll orchestrate security and quality assurance in tandem, where your expertise will drive confidence across every product release. This fully remote opportunity offers an annual salary of
$119,895.
Your Mission: Influence Product Security and User Trust
From day one, your work will be integral to securing critical applicationsâyour testing reports will directly shape security roadmaps and inform major engineering decisions. Youâll collaborate with QA, DevOps, and development teams to embed security best practices and inspire a culture of proactive defense. Itâs more than âfinding flawsââyouâll empower the team to anticipate risk and prevent vulnerabilities before they reach production.
What Success Looks Like
Picture this: a high-profile product launch where stakeholders sleep easily because every scenarioâs been tested, every loophole closed. Youâll:
- Simulate real-world attack vectors to reveal weaknesses that are often overlooked in conventional QA cycles, ensuring nothing slips through undetected.
- Translate complex technical findings into actionable recommendationsâwhether youâre demoing exploits to engineers or creating easy-to-digest Slack summaries for product leads.
- Guide remediation efforts and validate fixes, ensuring they truly resolve root issues rather than patching symptoms.
- Champion security education across the teamâyour brown-bag sessions or quick Loom videos simplify challenging concepts and motivate others to build with security in mind.
Impact Areas & Key Outcomes
Advanced Penetration Testing
Your proactive tests go beyond surface-level checks, uncovering vulnerabilities that automated scanners miss. Youâll influence architecture, not just bug lists. Every report you submit serves as a reference point for building smarter features and establishing secure-by-design standards.
Seamless QA Integration
Youâre the bridge between functional QA and offensive security. Your insights will make automated and manual tests more resilient, raising the bar for what âsecureâ really means. Youâll harness tools like Burp Suite, OWASP ZAP, Kali Linux, and custom scripts to probe every nook of modern web and mobile apps.
Real-Time Remote Collaboration
We move fast, but youâll always have the time and support to dive deeply into high-priority projects. Youâll partner with engineers, QA analysts, and even customer support, making sure security doesnât get lost in translation. Our remote toolset encompasses Jira, Slack, and collaborative code reviews, ensuring your impact is felt regardless of where you log in.
Communication That Drives Change
You simplify complex security ideas, whether over a Zoom call, through a lucid Confluence page, or via a snappy Slack thread. Your findings influence risk prioritization, sprint planning, and even executive strategy discussions, as you ensure that everyone truly understands the âwhyâ behind every recommendation.
The Tools & Environment
- Modern penetration testing frameworks (Burp Suite, Metasploit, nmap)
- Security automation and CI/CD integration
- Cloud infrastructure exposure (AWS, Azure, GCP)
- SAST/DAST solutions, custom scripting (Python, Bash)
- Remote QA collaboration toolsâJira, Slack, Notion, Confluence
- Supportive peer network that values thoughtful, well-communicated security work
What You Bring
- Proven expertise in ethical hacking, penetration testing, and vulnerability assessmentâyour reports make teams safer, not just more anxious
- Deep familiarity with web/mobile app architectures, cloud environments, and modern development lifecycles
- Genuine interest in both breaking and buildingâyour feedback sparks better engineering, not finger-pointing
- Comfort with asynchronous remote workâyou thrive independently, but love sharing discoveries and learning in real-time
- You communicate technical risk to all audiences, inspiring action, not fear
How Youâll Grow
Security threats evolve fast, and so will you. Youâll:
- Lead penetration test planning and scope definition alongside QA leads and product managers
- Mentor others through code reviews, security workshops, and real-world attack simulations
- Pilot new security testing tools, frameworks, and methodologiesâalways with a focus on practical outcomes
- Deepen your expertise in DevSecOps, secure SDLC, and compliance standards relevant to our industry
The Team & Culture
Youâll be surrounded by others who value curiosity, honesty, and accountability. Mistakes are learning opportunitiesâyour experiments and creative approaches wonât just be tolerated, theyâll be encouraged. Our global team spans multiple time zones, diverse backgrounds, and varied experiences, but we all share a common goal: building trustworthy and robust products.
Ready to Redefine What Secure Really Means?
If youâre excited to drive lasting change, influence global security practices, and work at the intersection of QA and offensive security, this role was made for you. Letâs transform challenges into achievements, together.
Annual Salary: $119,895
Global Talent Invited: We encourage applications from the United States, Canada, United Kingdom, European Union, Australia, India, and numerous other international regions.
