Apply for this opportunity

This job application is on an outside website. Be sure to review the job posting there to verify it's the same.

Apply Offsite

Penetration Tester (Java Application Security)

Job

JMD Technologies Inc.

Albany, NY (In Person)

Full-Time

Posted 1 week ago (Updated 2 days ago) • Actively hiring

Expires 7/3/2026

See Job Scorecard

Review key factors to help you decide if the role fits your goals.

How is this calculated?

Pay Growth

out of 5

Not enough data

Not enough info to score pay or growth

Job Security

out of 5

Not enough data

Calculating job security score...

Total Score

out of 100

Average of individual scores

Were these scores useful?

Skill Insights

Compare your current skills to what this opportunity needs—we'll show you what you already have and what could strengthen your application.

Job Description

Penetration Tester (Java Application Security) at JMD Technologies Inc. Penetration Tester (Java Application Security) at JMD Technologies Inc. in Albany, New York Posted in 3 days ago.

Type:

full-time

Job Description:

About the job

Title:

Penetration Tester (Java Application Security)

Location:

Albany, NY (Travel Required - Twice Monthly)

Employment Type:

Contract (6+ Months)

Status:

Accepting Candidates About the role Join a cybersecurity team responsible for identifying, testing, and strengthening enterprise application security across Java-based systems and web applications. This role focuses on penetration testing, vulnerability assessments, secure code analysis, and supporting secure application development initiatives. The ideal candidate will have strong hands-on penetration testing experience, expertise in Java application security, and a deep understanding of web application vulnerabilities and remediation strategies. Key Responsibilities Conduct penetration testing and vulnerability assessments for enterprise applications Perform security testing for Java-based systems and web applications Evaluate applications against industry security standards and vulnerability frameworks Identify and exploit common web vulnerabilities including: Injection attacks Cross-site scripting (XSS) Authentication and session vulnerabilities Utilize penetration testing tools to simulate real-world attack scenarios Perform secure code reviews and application security assessments Assess encryption methods and secure communication protocols Provide detailed security reports including: Vulnerabilities identified Risk analysis Remediation recommendations Collaborate with development and engineering teams to improve application security posture Support security testing for: APIs Web services Enterprise application environments Assist with security best practices and secure development guidance Qualifications 3+ years of experience in penetration testing or application security Strong experience with: Java application security Web application penetration testing Vulnerability assessments Hands-on experience identifying and exploiting: SQL Injection Cross-Site Scripting (XSS) CSRF Authentication vulnerabilities Experience with penetration testing tools such as: Burp Suite

OWASP ZAP

Nmap Metasploit Strong understanding of: OWASP Top 10 Secure SDLC Application security best practices Experience performing secure code reviews and security analysis

Knowledge of:

Encryption standards Secure communication protocols API security testing Strong analytical, documentation, and communication skills Preferred Qualifications Experience with cloud application security Knowledge of secure coding practices for Java applications Experience supporting enterprise-scale security programs Security certifications such as:

CEH OSCP GWAPT

Experience working in regulated or government environments