Lead and execute advanced white‑box penetration tests across applications, APIs, cloud (AWS/Azure), and Kubernetes; define offensive security roadmap; mentor testers; advise engineering and produce executive technical reports.
Saviynt's AI-powered identity platform manages and governs human and non-human access to all of an organization's applications, data, and business processes. Customers trust Saviynt to safeguard their digital assets, drive operational efficiency, and reduce compliance costs. Built for the AI age, Saviynt is today helping organizations safely accelerate their deployment and usage of AI. Saviynt is recognized as the leader in identity security, with solutions that protect and empower the world’s leading brands, Fortune 500 companies and government institutions. For more information, please visit www.saviynt.com.
We are seeking a Distinguished Penetration Tester to join our security team. This is an expert-level and hands-on role focusing on the most advanced penetration testing across our technology stack, including Application and API security, Cloud Infrastructure (AWS and Azure), and Containerized Environments, including Kubernetes.
You should be able to autonomously design and conduct fully comprehensive penetration tests at the levels of superiority as demonstrated by industry leading pen test service providers.
You will be responsible for defining advanced penetration testing and red teaming use cases, and mentoring other penetration testers. This role requires strong technical depth, and the ability to influence security decisions across the organization.
WHAT YOU WILL BE DOING
- Application Securitytesting - Lead and conduct highly advanced, in-depth white-box penetration testing of web applications and APIs.
- Cloud Security assessments - Perform comprehensive security assessments and penetration testing on Cloud Infrastructure (AWS and Azure), including configuration, deployment models, and integrated services.
- Deep-dive into Kubernetes clusters and containerized applications, exploiting misconfigurations and security flaws in containerized workloads.
- Define the offensive security roadmap and lead the adoption of cutting-edge testing techniques and tools.
- Serve as an advisor and act as effective challenger to Architecture, Engineering, and DevOps teams, providing expert guidance on secure design patterns and critical remediation strategies across all technology domains (App, API, Cloud, K8s).
- Lead advanced threat modelling exercises for major initiatives, focusing on identifying sophisticated, high-impact risks specific to our unique environment.
- Analyse, prioritize, and articulate complex security findings based on holistic risk, exploitability, and business context, focusing on vulnerabilities that pose a significant threat to organizational goals.
- Drive the selection, customization, and deployment of best-in-class security tools and develop proprietary tools or frameworks to address unique testing challenges.
- Develop and present executive-level technical reports that are actionable.
- Mentor other penetration testers fostering a culture of excellence, continuous learning, and security research.
WHAT YOU BRING
- Bachelor’s or Master’s degree in Computer Science, Information Security, or a related field. Or equivalent work experience with demonstrated results.
- 15+ years of hands-on, progressive experience in penetration testing and offensive security.
- A minimum of 10 years focused on advanced security assessments of Application and API ecosystems.
- A minimum of 10 years focused on complex penetration testing of AWS and/or Azure cloud infrastructures and Kubernetes/Containerized Environments.
- OSCP certification and similar hands-on offensive-based certifications are preferred.
If required for this role, you will:
- Complete security & privacy literacy and awareness training during onboarding and annually thereafter
- Review (initially and annually thereafter), understand, and adhere to Information Security/Privacy Policies and Procedures such as (but not limited to):
> Data Classification, Retention & Handling Policy
> Incident Response Policy/Procedures
> Business Continuity/Disaster Recovery Policy/Procedures
> Mobile Device Policy
> Account Management Policy
> Access Control Policy
> Personnel Security Policy
> Privacy Policy
Saviynt is an amazing place to work. We are a high-growth, Platform as a Service company focused on Identity Authority to power and protect the world at work. You will experience tremendous growth and learning opportunities through challenging yet rewarding work which directly impacts our customers, all within a welcoming and positive work environment. If you're resilient and enjoy working in a dynamic environment you belong with us!
Saviynt is an equal opportunity employer and we welcome everyone to our team. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.
Top Skills
AWS
Azure
Containers
Docker
Kubernetes
Rest Apis
Web Applications
Saviynt El Segundo, California, USA Office
1301 E El Segundo Blvd, El Segundo, CA, United States, 90245,
Similar Jobs
Manufacturing
The Customer Service Representative provides support by answering product-related questions and managing consumer calls to troubleshoot issues, ensuring a positive customer experience.
Top Skills:
Microsoft Office Suite Including OutlookMicrosoft TeamsMicrosoft Word
Manufacturing
The Product Consultant provides world-class customer service, managing inbound calls to diagnose issues and offer solutions while maintaining a positive consumer experience and meeting performance metrics.
Top Skills:
MS OfficeMicrosoft Teams
Blockchain • eCommerce • Fintech • Payments • Software • Financial Services • Cryptocurrency
The Territory Account Executive will drive field sales, engaging local businesses, running sales cycles, generating leads, and fostering partnerships. The role focuses on building a strong market presence and exceeding sales targets in a high-velocity environment.
Top Skills:
Salesforce
What you need to know about the Los Angeles Tech Scene
Los Angeles is a global leader in entertainment, so it’s no surprise that many of the biggest players in streaming, digital media and game development call the city home. But the city boasts plenty of non-entertainment innovation as well, with tech companies spanning verticals like AI, fintech, e-commerce and biotech. With major universities like Caltech, UCLA, USC and the nearby UC Irvine, the city has a steady supply of top-flight tech and engineering talent — not counting the graduates flocking to Los Angeles from across the world to enjoy its beaches, culture and year-round temperate climate.
Key Facts About Los Angeles Tech
- Number of Tech Workers: 375,800; 5.5% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Snap, Netflix, SpaceX, Disney, Google
- Key Industries: Artificial intelligence, adtech, media, software, game development
- Funding Landscape: $11.6 billion in venture capital funding in 2024 (Pitchbook)
- Notable Investors: Strong Ventures, Fifth Wall, Upfront Ventures, Mucker Capital, Kittyhawk Ventures
- Research Centers and Universities: California Institute of Technology, UCLA, University of Southern California, UC Irvine, Pepperdine, California Institute for Immunology and Immunotherapy, Center for Quantum Science and Engineering
