Careers
Join the team.
DALI X is a small, deliberate practice. We take fewer engagements than most firms and go considerably deeper. Every operator owns their work end-to-end — the recon, the exploitation, the findings, the report. If that is how you work, we should talk.
Project-based pay
You are paid per engagement at 40% of the engagement value — above what most pentest shops offer contractors.
Findings you own
Every operator writes their own findings. You saw it, you exploited it, you document it. No ghostwriting other people's work.
Craft over volume
We take fewer engagements and go deeper. You will have time to do the work properly, not scramble between overlapping scopes.
Remote, async-first
Lightweight daily comms. You know how to manage an engagement without hand-holding. We trust that.
Open roles
Current openings.
Web Application + API Penetration Tester
Active hiringProject-based / 1099Remote — US only$2,000–$10,000 per engagement
3+ years manual web application testing. Burp Suite Pro fluency required. Experience with GraphQL, gRPC, and modern auth patterns — OAuth2, JWT, SAML. OSCP or equivalent preferred. Pay scales with engagement tier — Essentials ($2,000–$4,000) through Standard ($4,800–$10,000).
Hiring now
Apply →Network / Active Directory Pentester
Active hiringProject-based / 1099Remote — US only$1,200–$12,000 per engagement
External and internal network testing. BloodHound, CrackMapExec, Impacket. Active Directory attack chains — Kerberoasting, AS-REP roasting, delegation abuse. OSCP or CRTO preferred. Pay scales with scope — External ($1,200–$3,200) through full Internal/AD ($6,000–$12,000).
Hiring now
Apply →Cloud Security Assessor — AWS / Azure / GCP
Active hiringProject-based / 1099Remote — US only$2,000–$10,000 per engagement
Deep experience with AWS and Azure attack paths. Pacu, ScoutSuite, Prowler. IAM enumeration and privilege escalation. Compliance-aligned report writing (SOC 2, PCI, HIPAA) a strong plus. Pay scales with scope — Essentials ($2,000–$4,800) through Standard ($4,800–$10,000).
Hiring now
Apply →AI Security Tester — LLM / Agent / RAG
Active hiringProject-based / 1099Remote — US only$3,200–$12,000 per engagement
Hands-on experience with LLM security testing — prompt injection, insecure tool use, RAG pipeline attacks, agent privilege escalation. Familiarity with OWASP Top 10 for LLMs. Experience with LangChain, OpenAI, Anthropic, or similar frameworks.
Hiring now
Apply →Technical Report Writer / Findings Editor
PipelineProject-based / 1099Remote — US only$800–$1,200 per report
Security background required. You need to understand what you are editing. Experience translating technical findings for executive audiences. Volume available as engagements scale.
Pipeline
Notify MeAll contractors must be US-based. Background verification required before first engagement. We do not sponsor visas. Pay is project-based at 40% of engagement value. Questions? Email careers@dali-x.com