Skip to main content
Tallo logoTallo logo
Apply for this opportunity

This job application is on an outside website. Be sure to review the job posting there to verify it's the same.

Apply Offsite

Penetration Tester - Java Application Security

Job

JMD Technologies Inc.

Albany, NY (In Person)

Full-Time

Posted 1 week ago (Updated 1 day ago) • Actively hiring

Expires 7/4/2026

Review key factors to help you decide if the role fits your goals.
How is this calculated?
Pay Growth
?
out of 5
Not enough data
Not enough info to score pay or growth
Job Security
?
out of 5
Not enough data
Calculating job security score...
Total Score
74
out of 100
Average of individual scores

Were these scores useful?

Skill Insights

Compare your current skills to what this opportunity needs—we'll show you what you already have and what could strengthen your application.

Job Description

Penetration Tester - Java Application Security at JMD Technologies Inc. Penetration Tester - Java Application Security at JMD Technologies Inc. in Albany, New York Posted in 4 days ago.
Type:
full-time
Job Description:
Job Title:
Penetration Tester -
Java Application Security Location:
Albany, NY (Travel 2 time a month)
Employment Type:
Contract Job Overview Penetration Tester specializing in Java application security to identify, exploit, and remediate vulnerabilities while improving secure coding and SDLC practices in enterprise environments. Key Responsibilities Perform penetration testing and vulnerability assessments for Java applications and infrastructure. Identify security flaws using manual and automated testing techniques. Develop exploit scenarios to simulate attacker behavior. Collaborate with development and QA teams to improve secure design and testing. Provide remediation guidance and secure coding recommendations. Analyze web application security issues (tokens, sessions, parameters, etc.). Document findings, risks, and remediation steps clearly. Support incident response and security investigations. Apply OWASP and
MITRE ATT&CK
frameworks. Stay current with CVEs and Java security best practices. Required Qualifications Bachelor's in Computer Science, Information Security, or related field. 6+ years of experience in DevSecOps, security, or development roles. Strong experience in Java application security and penetration testing. Knowledge of OWASP Top 10 and common web vulnerabilities (SQLi, XSS, etc.). Experience with tools like Burp Suite, Metasploit, and
SAST/DAST
tools. Understanding of SSL/TLS and secure communication protocols. Scripting experience (Python/Bash preferred). Strong analytical and communication skills.
Preferred Qualifications Certifications:
OSCP, GWAPT, GPEN, GXPN, CEH, CISSP, etc. Experience with secure Java code review. Cloud, mobile, and API security testing experience. Familiarity with compliance frameworks (e.g., HIPAA). Additional Information Travel required to Albany, NY twice per month. Enterprise-scale application exposure. Focus on improving SDLC security practices.