Penetration Tester, Web/Mobile Apps and Cloud Services

About Us:

Headquartered in the United States, TP-Link Systems Inc. is a global provider of reliable networking devices and smart home products, consistently ranked as the world’s top provider of Wi-Fi devices. The company is committed to delivering innovative products that enhance people’s lives through faster, more reliable connectivity. With a commitment to excellence, TP-Link Systems serves customers in over 170 countries and continues to grow its global footprint.

We believe technology changes the world for the better! At TP-Link Systems Inc, we are committed to crafting dependable, high-performance products to connect users worldwide with the wonders of technology.

Embracing professionalism, innovation, excellence, and simplicity, we aim to assist our clients in achieving remarkable global performance and enable consumers to enjoy a seamless, effortless lifestyle.

Overview:

TP-Link Systems Inc. is seeking a skilled and proactive Penetration Tester, Web/Mobile Apps and Cloud Services to support our cloud service projects under the guidance of senior team members. This role is designed for candidates with a foundational technical background in cybersecurity, particularly in cloud environments. Under the mentorship of senior engineers, the successful candidate will be involved in a range of security activities for specific cloud service components, including penetration testing, threat modeling and security assessment for defined modules, contributing to investigation, risk assessment and verification for incident response.

The ideal candidate is eager to learn, capable of working within defined boundaries, and driven to enhance the security of TP-Link's cloud services while developing deeper expertise in cloud security practices.

Key Responsibilities:

• Penetration Testing: Perform penetration testing on cloud services, web applications, and APIs to identify vulnerabilities. Provide remediation recommendations and write detailed penetration test reports.
• Threat Modelling and security assessment: Perform threat modeling to identify and evaluate potential risks for specific cloud components and web applications.
• Incident Response and Vulnerability Management: Support cloud and web application incident response, including investigation, containment, remediation, and post-incident analysis. Coordinate with cross-functional teams to ensure effective resolution.
• Cloud security configuration: Analyze cloud security configurations and identify misconfigurations that could lead to vulnerabilities.
• Develop security tools: Assist in developing various pen-testing tools, automated testing platforms, and scripts to enhance testing efficiency and accuracy for cloud environments.
• CI/CD Security Integration: Participate in the development and improvement of the company's CI/CD security processes, ensuring security considerations are integrated throughout the development lifecycle.
• Interpret cloud security standards and regulatory requirements, supporting implementation of security requirements.

Requirements

Qualifications:

• Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent work experience).
• Proven 1-3 years experience as a Security Engineer (Cloud & Web) or in a similar role.
• Strong knowledge of web application security, cloud security concepts, API security, and common vulnerabilities (OWASP Top 10).
• Experience with security tools such as Burp Suite, OWASP ZAP, Nmap, Kali, Nessus, Metasploit, etc.
• Capability to optimize penetration testing tools and automation strategies for cloud environments.
• Ability to analyze SAST results and identify false positives.
• Proficient in at least one programming language (e.g., Python, JavaScript, Bash, or PowerShell).
• Familiarity with major cloud platforms (AWS, Azure, GCP) and their security controls.
• Relevant security certifications (e.g., CEH, OSWP, etc.) are highly preferred.
• Published CVEs are highly preferred.

Soft Skills:

• Strong communication and interpersonal skills. Ability to work independently as well as collaborate with cross-functional teams.
• Strong willingness to learn, able to work under guidance and take constructive feedback.
• Team-oriented mindset, with the ability to follow technical direction and contribute constructively to group tasks.
• Attention to detail and systematic approach to problem solving.

Benefits

Salary range: $80,000-$132,000

• Free snacks and drinks, and provided lunch on Fridays
• Fully paid medical, dental, and vision insurance (partial coverage for dependents)
• Contributions to 401k funds
• Bi-annual reviews, and annual pay increases
• Health and wellness benefits, including free gym membership
• Quarterly team-building events

At TP-Link Systems Inc., we are continually searching for ambitious individuals who are passionate about their work. We believe that diversity fuels innovation, collaboration, and drives our entrepreneurial spirit. As a global company, we highly value diverse perspectives and are committed to cultivating an environment where all voices are heard, respected, and valued. We are dedicated to providing equal employment opportunities to all employees and applicants, and we prohibit discrimination and harassment of any kind based on race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws. Beyond compliance, we strive to create a supportive and growth-oriented workplace for everyone. If you share our passion and connection to this mission, we welcome you to apply and join us in building a vibrant and inclusive team at TP-Link Systems Inc.

Please, no third-party agency inquiries, and we are unable to offer visa sponsorships at this time.