Senior Penetration Tester - RBC

Key Responsibilities

• Lead and execute comprehensive penetration tests on web, mobile, and API applications across global business units.
• Develop and refine application security best practices, testing frameworks, and toolchains aligned with OWASP standards.
• Collaborate with development and DevOps teams to remediate findings, provide actionable guidance, and validate fixes.
• Conduct threat modeling, risk assessments, and security architecture reviews for new and existing applications.
• Mentor junior testers, share knowledge, and contribute to continuous improvement of the security testing lifecycle.

Requirements

• 5+ years of hands‑on penetration testing experience in enterprise environments.
• Deep knowledge of OWASP Top 10, web application security, and common vulnerability exploitation techniques.
• Proficiency with industry tools such as Burp Suite, OWASP ZAP, Metasploit, and automated scanning platforms.
• Strong scripting skills (Python, Bash) for test automation and data analysis.
• Excellent communication skills, able to translate technical findings into clear, actionable recommendations.