Job Description

Job Description and Duties

Are you ready to join a dynamic team of Software Engineers?  You’ll love working at State Fund!! 

State Fund’s Information Technology, Claims Engineering has an exciting opportunity for an IT professional who thrives in a dynamic and thought-provoking environment. 

Under the general direction of the of the Information Technology Manager II, the Web Application Penetration Tester will perform the manual penetration testing of mission critical web applications to discover vulnerabilities and propose remediations to the development team.

If you have the skill and drive to be recognized as a significant contributor to our IT development team, we want to speak with you!

As a Web Applications Penetration Tester, you will

·         Conduct penetration tests on web pages to identify and exploit security vulnerabilities.

·         Document the findings and provide techniques and solutions to remediate vulnerabilities.

·         Work closely with the development team to implement remediations/solution and verify fixes.

·         Plan and manage all aspects of the penetration testing function.

·         Mentor the development team in building and securing web applications using OWASP and other mainstream frameworks.

You will find additional information about the job in the .

Working Conditions

Special Requirements

Effective July 1, 2025, the State of California implemented the Personal Leave Program 2025 (PLP 2025) which reduces an employee’s monthly salary in exchange for leave credits. Employees appointed to this classification will have their monthly salary reduced and will accrue hours of PLP 2025 on the first day of each pay period in accordance with the applicable The salary range(s) included on this job posting do not reflect the reduction in pay.

To be considered, you must provide a fully completed STD 678 application, resume, and/or statement of qualifications if required. Alternative documents submitted in lieu of required Application, Resume, or Statement of Qualifications will not be accepted. Completed STD 678 must include duties performed, start and end dates, and hours worked per week for each position held.

Desirable Qualifications

In addition to evaluating each candidate's relative ability, as demonstrated by quality and breadth of experience, the following factors will provide the basis for competitively evaluating each candidate:

The qualified candidate for this position will have the following knowledge:

• Advanced knowledge web application penetration testing.
• In-depth knowledge of OWASP Top 10 and other frameworks.
• Experience and willingness to work in a fast-paced environment.
• Development experience in an enterprise-class system with multi-tier architecture
• Proficient knowledge of Java, Spring, and Oracle.
• Working knowledge of Linux and Windows
• Extensive knowledge of and proven experience with penetration testing of web applications, and methods and frameworks for identifying and remediating vulnerabilities.
• Strong knowledge in project management practices and ability to document processes and procedures as needed. 

Benefits

State Fund employees are eligible for a number of benefits. Our benefit package includes:

Health Benefits Program (CalPERS)

Retirement (CalPERS)

Employer Health and Consolidated Benefits Contributions

Dental, Vision

401(k) and 457 Deferred Compensation Plans

Employee Assistance Program

Group Legal Services Insurance

Holidays, Vacation/Sick/Other Paid Leave

Flex Elect Reimbursement Program

Wellness and Recognition

Alternate Work Schedules

Transit Pass Program

Tuition Reimbursement

Dependent Scholarship Program

Leadership Training

Mentoring Program

Benefit information can be found on the CalHR website and the CalPERS website.

Background Investigation

Prior to employment with State Compensation Insurance Fund, a background investigation (BI) will be initiated.

Required Application Package Documents

The following items are required to be submitted with your application. Applicants who do not submit the required items timely may not be considered for this job:

• Current version of the State Examination/Employment Application STD Form 678 (when not applying electronically), or the Electronic State Employment Application through your Applicant Account at All Experience and Education relating to the Minimum Qualifications listed on the Classification Specification should be included to demonstrate how you meet the Minimum Qualifications for the position.
• Resume is required and must be included.

Job Tags

Permanent employment, Full time, Flexible hours,

Similar Jobs