Senior Security Testing Specialist – Application Security

PNC

Security Testing Specialist Sr at PNC conducting security assessments on various technology platforms. Responsible for vulnerability discovery and technical remediation guidance in applications, APIs, and cloud environments.

Posted 6/23/2026full-timeDenver • Arizona, Colorado • 🇺🇸 United StatesSenior💰 $123,200 - $228,800 per yearWebsite

Tech Stack

Tools & technologies

AWSAzureCloudGoogle Cloud PlatformIoT

About the role

Key responsibilities & impact

Conducts security assessments of applications, APIs, cloud environments, networks, artificial intelligence systems, and other technology platforms to identify vulnerabilities, attack paths, and security control weaknesses.
Administers and operates security testing capabilities, including DAST platforms, automated scanning infrastructure, vulnerability validation processes, and security testing automation.
Develops and integrates AI-powered security testing capabilities, including custom testing harnesses, autonomous assessment workflows, and tooling that improves the effectiveness and efficiency of security assessments.
Performs targeted penetration testing and deep-dive security assessments of critical systems, technologies, and business processes to identify complex attack chains and high-impact vulnerabilities.
Researches emerging threats, attack techniques, and security technologies to develop innovative testing methodologies and enhance vulnerability discovery capabilities.
Reviews testing results with stakeholders, determines risk ratings, and provides technical remediation guidance to reduce enterprise security risk.

Requirements

What you’ll need

Experience performing application, cloud, network, or infrastructure penetration testing.
Experience administering enterprise vulnerability scanning or DAST platforms.
Experience with AWS, Azure, Google Cloud Platform (GCP), or cloud-native technologies.
Experience assessing AI-powered applications, large language models (LLMs), AI agents, or machine learning systems.
Experience with API security testing, authentication and authorization testing, and OWASP Top 10 vulnerabilities.
Experience with hardware, embedded systems, kiosks, ATMs, IoT, or other specialized technology security assessments.
Experience designing and developing AI-powered security testing harnesses, custom security tooling, or automated vulnerability assessment frameworks.
Strong understanding of attack methodologies, vulnerability research, exploit development, adversarial testing techniques, and security automation.
Higher level education such as a Masters degree, PhD, or certifications is desirable.

Benefits

Comp & perks

medical/prescription drug coverage (with a Health Savings Account feature)
dental and vision options
employee and spouse/child life insurance
short and long-term disability protection
401(k) with PNC match
pension and stock purchase plans
dependent care reimbursement account
back-up child/elder care
adoption, surrogacy, and doula reimbursement
educational assistance, including select programs fully paid
a robust wellness program with financial incentives
maternity and/or parental leave
up to 11 paid holidays each year
9 occasional absence days each year, unless otherwise required by law
between 15 to 25 vacation days each year, depending on career level; and years of service

ATS Keywords

✓ Tailor your resume

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

penetration testingvulnerability scanningAPI security testingsecurity automationAI-powered security testingauthentication testingauthorization testingexploit developmentadversarial testing techniquesvulnerability research

Soft Skills

stakeholder communicationtechnical remediation guidancerisk assessment

Certifications

Masters degreePhD