Senior Specialist, MAST Application Penetration Tester jobs in United States
cer-icon
Apply on Employer Site
company-logo

KPMG ยท 4 months ago

Senior Specialist, MAST Application Penetration Tester

positionOklahoma City, OK
timeFull-time
remoteOnsite
seniorityMid, Senior Level
money$84K/yr - $179K/yr
date3+ years exp

KPMG is a leading advisory practice experiencing rapid growth and seeking a Senior Specialist, MAST Application Penetration Tester to join their Managed Services practice. This role involves conducting manual application penetration testing, executing threat modeling, and demonstrating application testing experience to various audiences while maintaining a collaborative team environment.

AccountingAdviceBig DataConsultingFinancial ServicesInformation TechnologyLegalManagement ConsultingProfessional Services
badNo H1Bnote

Responsibilities

Conduct manual application penetration testing against API's (REST/SOAP), Web Applications, Mobile applications, and thick client applications
Perform objective based on abstract penetration testing engagements
Execute threat modeling, evaluate application business logic, and perform application architecture reviews
Demonstrate application testing experience in real time via demos to both internal and external audiences
Function independently in penetration testing engagements, with minimal oversight and guidance
Act with integrity, professionalism, and personal responsibility to uphold KPMG's respectful and courteous work environment

Qualification

Application penetration testingAPI testingBurp Suite ProEthical hacking certificationsCommunication skills

Required

Minimum three years of recent experience in application penetration testing of Application Programming Interface (API's), web applications, or mobile applications
Bachelor's degree from an accredited college/university or equivalent industry experience
Ability to communicate reporting results with technical and non-technical audiences and lead remediation conversations
Experience with burp suite pro, and other app testing tools such as Netsparker and Checkmarx
Ability to travel as required
Must be authorized to work in the U.S. without the need for employment-based visa sponsorship now or in the future. KPMG LLP will not sponsor applicants for U.S. work visa status for this opportunity (no sponsorship is available for H-1B, L-1, TN, O-1, E-3, H-1B1, F-1, J-1, OPT, CPT or any other employment-based visa)

Preferred

One or more major ethical hacking certifications not required but preferred; GIAC Web Application Penetration Tester (GWAPT), Council for Registered Ethical Security Testers (CREST), Offensive Security Web Expert (OSWE), Offensive Security Web Assessor (OSWA)

Benefits

A comprehensive, competitive benefits package
Medical and dental plans
Vision coverage
Disability and life insurance
401(k) plans
A robust suite of personal well-being benefits to support your mental health
Personal Time Off per fiscal year
Two firmwide breaks each year where employees will not be required to use Personal Time Off

Company

KPMG

twittertwittertwitter
Glassdoor3.6
company-logo
KPMG is a network of independent member firms offering audit, tax, and advisory services.
dateFounded in 1987
location
London, England, GBR
people-size10001+ employees
web-link
https://kpmg.com

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Anna Scally
KPMG EMA Technology, Media and Telecoms Sector Leader
linkedin
leader-logo
Casey Winters
Partner
linkedin

Recent News

Venturebeat
How KPMG is redefining the future of SAP consulting on a global scale
2026-01-11
The Independent
Two former Carillion finance directors fined by FCA over misleading statements
2026-01-08
City A.M.
City watchdog fines ex-Carillion finance chiefs for market manipulation
2026-01-08
Company data provided by crunchbase