State Street Corporation

Penetration Testing Manager

State Street Corporation$140K — $222K *
Finance & Insurance
8 - 10 years of experience
Job Overview by Ladders

Qualifications

  • 8+ years in offensive security, particularly in high-security environments
  • 2+ years of team leadership experience preferred
  • Deep expertise in network and application penetration testing
  • Strong knowledge of cloud environments and identity-centric architectures
  • Proven ability to translate technical findings into actionable remediation plans
  • Excellent skills in stakeholder engagement and executive communication
  • Experience with AI/LLM tools for penetration testing is a plus

Responsibilities

  • Lead and mentor a team of penetration testers, fostering technical expertise and skill development
  • Own and evolve the penetration testing program, including methodologies and quality assurance
  • Drive high-quality, hands-on assessments across applications, APIs, and cloud environments
  • Establish and enforce consistent testing standards for internal and external assessments
  • Oversee external testing providers, ensuring quality and accuracy of results
  • Ensure documentation and reporting meet regulatory and audit readiness
  • Partner with engineering teams to improve secure design and drive remediation
  • Integrate emerging technologies, including AI security testing approaches
  • Track program metrics and communicate insights to senior leadership
  • Continuous improvement of program maturity in line with evolving threats

Benefits

  • Retirement savings plan (401K) with company match
  • Comprehensive insurance coverage including life, medical, dental, and vision
  • Paid time off for vacation, sick leave, and family care
  • Access to Employee Assistance Program
  • Incentive compensation linked to performance
  • Eligibility for tax-advantaged savings plans
Full Job Description

Who We Are Looking For

We are seeking a Manager to lead State Street’s Penetration Testing Team, reporting into leadership within the Threat Intelligence and Assurance function. This role combines technical leadership with program ownership, focused on delivering high-quality, engineering-driven penetration testing across a complex, highly regulated financial environment. You will be responsible for building and maturing a team that performs rigorous, hands-on assessments across applications, networks, APIs, and cloud platforms, while establishing consistent, risk-aligned testing practices. The Manager is accountable for defining technical standards, ensuring depth and quality of testing, and delivering outputs that are evidence-based, reproducible, and aligned with audit and regulatory expectations. Working closely with engineering, architecture, and risk partners, you will ensure testing results translate into measurable risk reduction and sustained improvements in secure system design and implementation.

What you will be responsible for

As a Manager, Penetration Testing, you will:

  • Lead, mentor, and develop a team of penetration testers, fostering strong technical depth, hands-on expertise, and continuous skill development across application, network, and cloud domains
  • Own and evolve the penetration testing program, including methodologies, tooling, quality assurance practices, reporting standards, and risk-based prioritization of testing activities
  • Drive delivery of high quality, hands on testing across enterprise applications, APIs, infrastructure, and cloud environments, ensuring assessments are technically rigorous and aligned to real-world exploitability
  • Establish and enforce engineering-centric testing standards, ensuring consistency, reproducibility, and depth across both internal and third-party executed assessments
  • Oversee and coordinate testing performed by external providers, including scoping, execution expectations, and technical validation of results to ensure quality and accuracy
  • Ensure regulator and audit ready outputs, including clear documentation, evidence-based findings, and reporting that ties technical vulnerabilities to business and risk impact
  • Partner with engineering, infrastructure, and architecture teams to drive effective remediation, validate fixes, and improve secure design and development practices
  • Integrate emerging technologies and techniques into the program, including AI/LLM-focused testing approaches and assurance of enterprise AI deployments (e.g., prompt injection, model abuse, data exposure)
  • Track, analyze, and communicate program metrics, including coverage, risk trends, vulnerability recurrence, and remediation performance, providing clear insights to senior leadership
  • Continuously improve program maturity, balancing technical depth with scalability, consistency, and alignment to evolving threats, technologies, and regulatory expectations

What we value

These skills will help you succeed in this role

  • Leadership through influence and accountability, with a focus on developing talent and building high-trust teams.
  • Risk-based decision making, prioritizing what matters most in complex, regulated environments.
  • Technical depth with strategic perspective—ability to connect hands-on findings to enterprise risk outcomes.
  • Clear, executive-ready communication tailored to technical and non-technical audiences.
  • Curiosity and continuous learning, especially in emerging areas such as AI/LLM security.
  • Collaboration and partnership across engineering, risk, and business stakeholders.
  • Ownership and bias for action, ensuring issues are driven through remediation and closure.

Education & Preferred Qualifications

  • 8+ years in offensive security with experience in high security/highly regulated environments; 2+ years leading teams preferred.
  • Deep expertise in network and application penetration testing, including enterprise attack paths and complex application ecosystems.
  • Strong knowledge of cloud, containerized environments, and identity-centric architectures.
  • Demonstrated ability to translate findings into actionable, risk-based remediation.
  • Strong stakeholder engagement and executive communication skills.
  • Prior successful experience working with technology owners and business unit leaders to reduce risk
  • Nice to have: experience using AI/LLM tools to perform network and application penetration testing and configuration/security reviews.
  • Education/Certifications (desired, not mandatory): BS/MS in relevant field; OSCP/OSEP/OSCE, GPEN/GXPN, GWAPT, GCPN, PNPT, CREST (CRT, CCT INF, CCT APP, CCRTS, CCRTM) or similar.

Salary Range:

$140,000 - $222,500 Annual

The range quoted above applies to the role in the primary location specified. If the candidate would ultimately work outside of the primary location above, the applicable range could differ.

Employees are eligible to participate in State Street’s comprehensive benefits program, which includes: our retirement savings plan (401K) with company match; insurance coverage including basic life, medical, dental, vision, long-term disability, and other optional additional coverages; paid-time off including vacation, sick leave, short term disability, and family care responsibilities; access to our Employee Assistance Program; incentive compensation including eligibility for annual performance-based awards (excluding certain sales roles subject to sales incentive plans); and, eligibility for certain tax advantaged savings plans.

For a full overview, visit .

About State Street Corporation

State Street Corporation Careers

Join the dynamic team at State Street Corporation, a leading financial services provider known for its commitment to innovation, leadership, and professional growth. As a global powerhouse in investment management and servicing, we offer unparalleled job opportunities that propel your career to new heights.

Work You’ll Do

At State Street Corporation, you’ll be part of a culture that values diversity, leadership, and continuous professional development. Engage in work that transforms the financial landscape and helps our clients achieve their investment goals. Our team at State Street is at the forefront of combining industry expertise with cutting-edge technology to deliver exceptional service and results.

Explore Our Job Opportunities

Whether you’re looking for an entry-level position or a senior role, State Street Corporation offers a range of career paths in areas such as asset management, data analytics, finance, and technology. Our hiring process is designed to identify and nurture talent, focusing on your skills and potential. Prepare your resume, ace the interview, and join a team that’s committed to your career growth.

Internship Programs

Kickstart your career with a State Street internship. Our programs provide hands-on experience, networking opportunities, and professional mentoring in a real-world setting. Interns at State Street gain valuable insights and skills that make them competitive candidates for full-time positions within our company.

Benefits and Growth

State Street Corporation is dedicated to the growth and well-being of our employees. We offer a comprehensive benefits package that supports both your professional and personal life. From advanced career training and leadership development programs to health and wellness benefits, we ensure that our team members have the resources they need to succeed.

Inclusive Culture and Diversity

We pride ourselves on fostering an inclusive environment where every employee can thrive. Diversity is not just embraced; it’s celebrated. At State Street, you’ll work alongside a diverse group of professionals who bring a wide range of perspectives and ideas to the table. Our diversity training programs are designed to enhance collaboration and innovation across our global team.

Stay Connected

Join Our Team Discover the career you’ve always wanted by exploring the job opportunities at State Street Corporation. We look for driven, curious, and innovative team players who are ready to make an impact. Search State Street jobs now and find the position that best matches your skills and interests. Keep Up to Date Stay informed with career tips, insider perspectives, and industry-leading insights you can use today—all from the people who work here. Our careers blog provides you with the latest trends, tools, and advice to keep you ahead in your professional journey.

Job Alert Emails

Personalize your subscription to receive job alerts, latest news, and insider tips tailored to your preferences. Discover the exciting and rewarding opportunities that await at State Street Corporation, where your career development is our priority. Join State Street Corporation and be part of a team that values innovation, leadership, and a commitment to excellence. Your future in the financial services industry starts here.
Learn more about State Street Corporation
Size
39,335 employees
Market Cap
$28.4 billion
Industry
Net Income
$2.4 billion
Founded
1792
5 Year Trend
-4.9%
NASDAQ

Similar Jobs

More Jobs at State Street Corporation

More Finance & Insurance Jobs

Find similar Penetration Testing Manager jobs: