Web Application Security Penetration Tester

Web Application Penetration Tester

Location: Richardson, TX (Onsite - 5 days/week)
Employment Type: 6-Month Contract-to-Hire
Industry: Banking / Financial Services

Top Skills (Must-Have)

• Hands-on web application and API penetration testing experience
• Strong Burp Suite experience for manual testing and exploitation
• Deep understanding of OWASP Top 10 and vulnerability mapping
• Experience identifying, exploiting, and validating application security flaws
• Ability to develop and present proof-of-concept (POC) findings to technical and non-technical stakeholders
• Clear communication skills with developers, architects, and leadership

General Job Description

We are seeking a Web Application Penetration Tester to join a banking client's in-house application security team. This role focuses on manual, hands-on penetration testing of web applications and APIs to identify security vulnerabilities throughout the secure software development lifecycle (SDLC).
You will serve as a subject matter expert in web, API, and cloud application security, working closely with development and architecture teams to proactively identify risk, demonstrate exploitability, and influence secure software design decisions. This is a fully onsite, contract-to-hire position based in Richardson, Texas.

Key Responsibilities

• Conduct manual application security penetration tests against web applications and APIs
• Identify and exploit vulnerabilities in application design and implementation
• Map findings to OWASP Top 10 and clearly articulate risk
• Develop clear proof-of-concept (POC) demonstrations for development teams and leadership
• Review technical architecture and design documentation to ensure security controls are incorporated early
• Provide guidance on secure application architecture standards and design patterns
• Partner with application and security SMEs to support secure development practices
• Communicate application security concepts effectively across multiple organizational levels
• Contribute to a culture of secure-by-design software development

Additional Skills (Nice to Have)

• Experience testing REST APIs, authentication flows, authorization models, and token-based security
• Familiarity with cloud-hosted application risks
• Exposure to CI/CD security tooling (SAST, DAST, SCA)
• Experience in regulated or financial services environments
• Security certifications such as OSCP, OSWE, GWAPT, GPEN, or CEH
• Ability to review and influence application security controls before code is deployed

Business Drivers

This role supports a proactive application security program within a banking environment, where early identification and exploitation of vulnerabilities helps reduce downstream risk and improve overall security posture. The team leverages modern tooling and emerging technologies, including AI-driven initiatives, to strengthen detection capabilities and better support secure application development.
You will play a key role in directly improving the security of customer-facing and internal systems by working closely with development teams and providing actionable, real-world security insights.
Job Type & Location
This is a Contract to Hire position based out of Richardson, TX.
Pay and Benefits
The pay range for this position is $80.00 - $80.00/hr.
Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following:
Medical, dental & vision
Critical Illness, Accident, and Hospital
401(k) Retirement Plan - Pre-tax and Roth post-tax contributions available
Life Insurance (Voluntary Life & AD&D for the employee and dependents)
Short and long-term disability
Health Spending Account (HSA)
Transportation benefits
Employee Assistance Program
Time Off/Leave (PTO, Vacation or Sick Leave)
Workplace Type
This is a fully onsite position in Richardson,TX.
Application Deadline
This position is anticipated to close on May 26, 2026.

About TEKsystems

We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.

The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.

About TEKsystems and TEKsystems Global Services

We're a leading provider of business and technology services. We accelerate business transformation for our customers. Our expertise in strategy, design, execution and operations unlocks business value through a range of solutions. We're a team of 80,000 strong, working with over 6,000 customers, including 80% of the Fortune 500 across North America, Europe and Asia, who partner with us for our scale, full-stack capabilities and speed. We're strategic thinkers, hands-on collaborators, helping customers capitalize on change and master the momentum of technology. We're building tomorrow by delivering business outcomes and making positive impacts in our global communities. TEKsystems and TEKsystems Global Services are Allegis Group companies. Learn more at TEKsystems.com.

The company is an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.

San Francisco Fair Chance Ordinance: Pursuant to the San Francisco Fair Chance Ordinance, for all positions located in the city and county of San Francisco, we will consider for employment qualified applicants with arrest and conviction records.

Massachusetts Lie Detector: It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.

Use of Artificial Intelligence (AI): We may use Artificial Intelligence (AI) to support parts of our hiring process, including sourcing, screening, and evaluating candidates. AI helps assess applications and qualifications, but final decisions are made by our hiring team. By applying, you acknowledge and agree that your application may be reviewed using AI tools.