Web Application Pentester

to learn more.

Headquartered in Dallas with offices in Austin, Fort Worth, Houston, Richardson, Plano and San Antonio, Texas Capital was recently named Best Regional Bank in 2024 by Bankrate and was named to
* The Dallas Morning News*’ Dallas-Fort Worth metroplex Top Workplaces 2023 and Go Banking Rate ’s 2023 list of Best Regional Banks. For more information about joining our team, please visit us at .At Texas Capital, we are driven by a single-minded and unwavering mission: to serve business and the individuals who run them. We use a consultative approach and innovative technologies to develop innovative ideas that give the bank and our clients a competitive advantage.

We partner with our customers to push the boundaries of what’s possible—together.  Headquartered in Dallas, Texas Capital has offices in Austin, Fort Worth, Houston, Richardson, Plano and San Antonio, and we serve clients in a variety of industries from coast-to-coast.
We were recently recognized as the
* Best Regional Bank for 2024
* by Bankrate, listed on
* Newsweek’s America’s Greatest Workplaces for Diversity
* list, and named a top place to work by
* The Dallas Morning News*. For further information, please visit us at .  
** Brief Overview of Position
** The Web Application Pentester role is responsible for conducting application penetration tests and software security architecture reviews to identify risk throughout Texas Capital’s secure software development lifecycle.  This role will serve as a subject matter expert (SME) in the areas of web application, API, and cloud security.  As a senior member of the team, you will ensure the security, integrity, and confidentiality of all Texas Capital web assets.  

Success in this role includes the ability to work in a fast paced environment, communicate effectively across the organization, identifying and reducing risk while still meeting business needs and objectives, and a passion to teach and learn from other colleagues.

** Responsibilities*
* * Conduct application security penetration tests to identify vulnerabilities in the software design and implementation.
* Assess emerging application security systems, standards, authentication protocols, and products to determine where they fill gaps, overlap with existing solutions, or extend capabilities.
* Provide guidance on application security architecture standards and design patterns inclusive of web, API, and cloud system integration.
* Partner with application technology subject matter experts (SMEs) to define and formalize security policies required to build, support, and consume application services.
* Influence and facilitate a culture of secure software design and development through application security awareness and best practices.
* Communicate application security concepts effectively across all organization levels.
* Review technical design documentation to ensure security related items are incorporated.
* Ability to think critically, prioritize tasks and solve problems independently or as a team member.

The duties listed above are the essential functions, or fundamental duties within the job classification. The essential functions of individual positions within the classification may differ. Texas Capital Bank may assign reasonably related additional duties to individual employees consistent with standard departmental policy.  
** Qualifications*
* * Bachelor's Degree required or equivalent experience in Information Technology or Computer Science discipline.
* AWAE/OSWE, OSCP, CEH, GWAPT, or GPEN security certifications desired.
* 5+ years of experience conducting security assessments in a secure SDLC workflow, such as Security Architecture Analysis, Static Application Security Testing (SAST), Software Composition Analysis (SCA), and Dynamic Application Security Testing (DAST).
* Experience of using a variety of application security tools such as Burp Suite, Git Hub Advanced Security, SQLMap, SSLyze, etc.
* Understanding of security protocols, cryptography, authentication, authorization, and security relative to Applications/APIs.
* 5+ years of experience in support, development, design, and implementation of technology solutions on…