CybersecurityJobs.io
← Back to all jobs

Job Description

As a Senior Penetration Tester at JPMorganChase, you will plan, execute, and report penetration tests across web applications, APIs, cloud platforms, infrastructure, thick-client, and mobile environments to identify vulnerabilities and guide remediation. The role blends hands-on testing with collaboration across engineering and security teams, contributing to a stronger security posture. JPMorganChase values learning, diversity, and inclusion, and supports professional growth with a robust rewards package and resources for wellbeing.

Benefits

  • Base salary determined based on the role, experience, skill set and location
  • Commission-based pay and/or discretionary incentive compensation, paid in cash and/or forfeitable equity
  • Comprehensive health care coverage
  • On-site health and wellness centers
  • Retirement savings plan
  • Backup childcare
  • Tuition reimbursement
  • Mental health support
  • Financial coaching

Responsibilities

  • Plan, scope, and execute penetration testing engagements across web applications, APIs, cloud platforms, infrastructure, thick-client, and mobile applications
  • Collect and validate prerequisites for engagements, ensuring access, documentation, and approvals are in place
  • Perform manual and automated testing to identify vulnerabilities, misconfigurations, and security weaknesses using standard tools and custom scripts
  • Document findings in comprehensive reports with technical details, risk assessments, and actionable remediation guidance
  • Conduct peer reviews of penetration test reports to ensure accuracy, consistency, and quality
  • Collaborate with development, infrastructure, and security teams to clarify findings and support remediation efforts
  • Stay current with emerging threats and attack techniques by leveraging threat intelligence and security research
  • Contribute to the ongoing improvement of testing methodologies, tools, and frameworks to align with firm strategy and regulatory requirements

Requirements

  • 5+ years of hands-on penetration testing experience in offensive security with a proven record of scoping, executing, and reporting complex engagements
  • Expertise in manual penetration testing across web, API, cloud (AWS/Azure/GCP), infrastructure, thick-client, and mobile applications (Android/iOS) using industry-standard tools
  • Strong understanding of security assessment methodologies such as OWASP Top Ten and NIST Cybersecurity Framework
  • Ability to identify systemic security issues and provide clear, actionable remediation recommendations
  • Exceptional organizational and communication skills, including the ability to write detailed technical reports and present findings to technical and non-technical stakeholders
  • Experience conducting peer reviews of reports and mentoring junior testers
  • Continuous learner who stays current with offensive security trends, tools, and techniques

Technologies

  • Burp Suite
  • Nmap
  • Metasploit
  • AWS
  • Azure
  • GCP
  • Android
  • iOS
  • Windows
  • Unix-like
  • OWASP Top Ten
  • NIST Cybersecurity Framework
  • Python
  • Java
  • Rust

About Us

JPMorganChase, one of the oldest financial institutions, delivers innovative financial solutions to millions of consumers, small businesses, and many of the world’s premier corporate, institutional, and government clients under the J.P. Morgan and Chase brands. With a history spanning more than two centuries, the firm remains a leader across investment banking, consumer and small business banking, commercial banking, financial transaction processing, and asset management.

We offer a competitive total rewards package, including base salary determined by role, experience, skill set, and location. Eligible colleagues may receive commission-based pay and/or discretionary incentive compensation, paid in cash and/or forfeitable equity, in recognition of individual achievements. A range of benefits and programs is available to meet employee needs based on eligibility, including comprehensive health care coverage.

We recognize that our people are our strength and value the diverse talents they bring to our global workforce. JPMorganChase is an equal opportunity employer that values diversity and inclusion and does not discriminate on protected attributes. JPMorgan Chase & Co. is an Equal Opportunity Employer, including Disability/Veterans.

About the Team

Our Corporate Functions teams encompass a broad spectrum from finance and risk to human resources and marketing. These corporate groups play a vital role in enabling our businesses, clients, customers, and employees to succeed.

Similar Jobs