Logo for Bishop Fox

Senior AI/LLM Penetration Tester

Role overview

Qualifications

  • 5+ years of offensive security experience performing penetration tests, red team engagements, or application security assessments
  • Experience assessing AI/LLM-powered applications for vulnerabilities
  • Strong understanding of web application security fundamentals, including the OWASP Top 10
  • Excellent written and verbal communication skills

Responsibilities

  • Conduct cutting-edge security assessments of large language models, AI agents, and AI-powered applications
  • Mentor teammates and contribute to internal research, tooling, and methodology development
  • Review AI application architectures and identify security weaknesses across APIs, cloud infrastructure, and application logic
  • Perform source code review and dynamic testing

About the company

Bishop Fox logo

Bishop Fox

Cybersecurity

Bishop Fox is recognized as the leading authority in offensive security, providing solutions ranging from continuous penetration testing, red teaming, and attack surface management to product, cloud, and application security assessments. Enterprises have been told that breaches are inevitable. But we don’t accept that. We focus on offensive security because we believe securing modern organizations requires a "forward defense" approach that proactively uncovers and eliminates exposures before they are exploited. Over the past 16 years, we’ve worked with more than 25% of the Fortune 100, 8 of the top 10 global tech companies, and hundreds of other organizations to improve their security. Our award-winning Cosmos platform was named Best Emerging Technology in the 2021 SC Media Awards and our offerings are consistently ranked as “world class” in customer experience surveys. Security isn’t just a job to us. We do this because we love it — and because we're committed to the common good. In fact, we have authored 15 open-source tools, shared groundbreaking research, and published more than 50 security advisories in the last 5 years. Learn more about us at bishopfox.com or follow us on Twitter @bishopfox for the latest updates.

Company details

Company typeSME
IndustryCybersecurity
Company size201 - 500

Your match analysis

See how your profile stacks up against this role.

We compared the job requirements to your profile to show where you're strong and where you fall short.

Job description

For more than two decades, Bishop Fox has defined the forefront of offensive security. By combining elite human expertise with the power of its proprietary Cosmos AI engine, the firm delivers industry-leading cloud and application security services, including AI-powered penetration testing and AI/LLM security assessments that reflect real-world attacker behavior. Renowned for its innovation and contributions to the open-source community through flagship tools like Sliver and AIMap, Bishop Fox has released 25+ tools and 75+ advisories in the last 10 years.  

As a trusted partner to the world’s most recognizable brands, Bishop Fox protects 26 of the Fortune 100, eight of the top 10 global tech companies, all of the top five global media companies, 10 of the top 20 retailers and 7 of the top 10 manufacturers. A consistent market leader, Bishop Fox has been recognized as a Leader and "Fast Mover" in the GigaOm Radar for Attack Surface Management for five consecutive years. With a 70 NPS rating, the firm remains the trusted partner for organizations seeking to stay ahead of the evolving threat landscape. Learn more at bishopfox.com. 

We are now hiring a Senior AI/LLM Security Consultant to help clients stay ahead of emerging AI threats by conducting cutting-edge security assessments of large language models, AI agents, and AI-powered applications. 

 

Who You Are and What You’ll Do 

Our wants are simple: be good at—and most importantly—love what you do. Here's what we're looking for: 

  • 5+ years of offensive security experience performing penetration tests, red team engagements, or application security assessments  
  • Experience assessing AI/LLM-powered applications for vulnerabilities such as:  
    • Prompt injection  
    • Jailbreak techniques  
    • Indirect prompt injection  
    • Data leakage and sensitive information disclosure  
    • Insecure tool/function calling  
    • Agentic AI abuse  
    • Model misuse and unsafe output generation  
    • Understanding of modern AI architectures, including:  
  • Experience performing manual application security testing beyond automated scanning  
  • Strong understanding of web application security fundamentals, including the OWASP Top 10 Web, Agentic, and LLM Applications.  
  • Experience reviewing AI application architectures and identifying security weaknesses across APIs, cloud infrastructure, and application logic  
  • Experience performing source code review and dynamic testing  
  • Familiarity with cloud platforms (AWS, Azure, or GCP) and securing AI workloads  
  • Scripting or programming experience in Python, JavaScript Go, Java, or similar languages  
  • Familiarity with LLM application and agent-orchestration frameworks, inference provider APIs, external capability integration for modelsand open source tooling across commercial and self-hosted ecosystems. 
  • Knowledge of authentication, authorization, networking, APIs, and secure software development practices  
  • Excellent written and verbal communication skills, including presenting findings to technical and executive audiences  
  • Ability to mentor teammates and contribute to internal research, tooling, and methodology development  
  • OSCP, OSEP, GWAPT, GPEN, GXPN, or other relevant certifications are helpful but not required  
  • Bachelor's degree in Computer Science, Cybersecurity, or a related technical field is a plus  

 

What Sets You Apart 

  • Experience conducting AI red team exercises against production or pre-production AI systems  
  • Research into emerging AI attack techniques or contributions to the offensive security community  
  • Experience building or securing AI agents and autonomous workflows  
  • Knowledge of adversarial machine learning concepts and model security  
  • Experience with cloud-native AI platforms such as Azure OpenAI, Amazon Bedrock, or Google Vertex AI  
  • Familiarity with AI software development lifecycle (AI SDLC) and AI governance frameworks  

 

Why Bishop Fox 

At Bishop Fox, we're driven by a simple mission: deliver exceptional quality to our clients, foster a vibrant and fulfilling environment for our team, and champion excellence within our industry. Our core values, which we live by every day, are:  

  • Be Excellent to Each Other 
  • Do the Right Thing 
  • Do What You’ll Say You’ll Do 
  • Get Better Together 
  • Give a Sh*t 

 

This position is not eligible for visa sponsorship. Applicants must be authorized to work in the United States of America for the duration of employment without sponsorship.  

Bishop Fox has always allowed its employees to work remotely, and this role can be based anywhere in the United States. 

Our comprehensive benefits program is tailored to meet your needs at an affordable price. We embrace diversity and foster an inclusive culture where employees are empowered to do their best work while advancing the security community through world-class research and consulting. 

Bishop Fox is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including sexual orientation and gender identity), national origin, disability, protected veteran status, or any other characteristic protected by applicable federal, state, or local law. All new hires must successfully complete a background check as a condition of employment. 

 

Interested? Apply today!   

 

 

Apply once. Then go straight to the hiring manager.

After you apply, unlock the direct contact details of the people who actually make the call. A quick follow-up makes you 5x more likely to land an interview.

MR

Marcus Rivera

Chief Revenue Officer

m.rivera@company.com
linkedin.com/in/marcusrivera
Unlocked after you apply
·

Penetration Tester Related jobs

Other jobs at Bishop Fox

Premium

Reach out to the hiring manager directly.

Gain access to the contact details of the hiring managers who actually decide, and reach out to network with them directly. That, plus more when you upgrade:

  • Full match report with fit score and gaps
  • Career diagnostics on how recruiters read you
  • Curated company matches and warm intros
  • 48h early access to new roles

Cancel anytime.