Senior Application Security Tester

Job Summary

Seeking a full-time Senior Application Security Tester who will serve as both a hands-on penetration tester for complex client engagements and a subject matter expert in AI red teaming, working remotely to define testing methodologies for AI-enabled applications and mentor mid-level engineers.

Key responsibilities

• Lead end-to-end web application and API penetration tests, scoping engagements and presenting findings to client leadership
• Design and execute AI red team engagements against LLM-backed applications and agentic workflows, covering various attack vectors
• Build and maintain Evolve Security's AI red team methodology, contributing to payload libraries and reporting templates

Required qualifications

• 5-8+ years of offensive security experience with expertise in web application and API penetration testing
• Demonstrable hands-on experience testing AI/ML systems and LLM-backed applications
• Mastery of complex authentication and authorization flows, as well as modern web vulnerabilities
• Strong scripting skills in Python and familiarity with JavaScript/TypeScript, Bash, and PowerShell
• Preferred certifications include OSWE, OSCP, OSEP, and AI/ML-adjacent credentials