Careers
Join the team.
DALI X is a small, deliberate practice. We take fewer engagements than most firms and go considerably deeper. Every operator owns their work end-to-end — the recon, the exploitation, the findings, the report. If that is how you work, we should talk.
Project-based pay
You are paid per engagement, not per hour. Rates are set at 40% of the engagement value — above what most pentest shops offer contractors.
Findings you own
Every operator writes their own findings. You saw it, you exploited it, you document it. No ghostwriting other people's work.
Craft over volume
We take fewer engagements and go deeper. You will have time to do the work properly, not scramble between overlapping scopes.
Remote, async-first
Lightweight daily comms. You know how to manage an engagement without hand-holding. We trust that.
Open roles
Current openings.
Web Application + API Penetration Tester
Active hiringProject-based / 1099Remote — US only$2,000–$10,000 per engagement
3+ years manual web application testing. Burp Suite Pro fluency required. Experience with GraphQL, gRPC, and modern auth patterns — OAuth2, JWT, SAML. OSCP or equivalent preferred. Pay scales with engagement tier — Essentials ($2,000–$4,000) through Standard ($4,800–$10,000).
Hiring now
Apply →Network / Active Directory Pentester
Active hiringProject-based / 1099Remote — US only$1,200–$12,000 per engagement
External and internal network testing. BloodHound, CrackMapExec, Impacket. Active Directory attack chains — Kerberoasting, AS-REP roasting, delegation abuse. OSCP or CRTO preferred. Pay scales with scope — External ($1,200–$3,200) through full Internal/AD ($6,000–$12,000).
Hiring now
Apply →Cloud Security Assessor — AWS / Azure / GCP
Active hiringProject-based / 1099Remote — US only$2,000–$10,000 per engagement
Deep experience with AWS and Azure attack paths. Pacu, ScoutSuite, Prowler. IAM enumeration and privilege escalation. Experience writing compliance-aligned reports (SOC 2, PCI, HIPAA) a strong plus. Pay scales with scope — Essentials ($2,000–$4,800) through Standard ($4,800–$10,000).
Hiring now
Apply →AI Security Tester — LLM / Agent / RAG
Active hiringProject-based / 1099Remote — US only$3,200–$12,000 per engagement
Hands-on experience with LLM security testing — prompt injection, insecure tool use, RAG pipeline attacks, agent privilege escalation. Familiarity with OWASP Top 10 for LLMs. Experience with LangChain, OpenAI, Anthropic, or similar frameworks. This is a premium, specialized role — pay reflects that.
Hiring now
Apply →Technical Report Writer / Findings Editor
PipelineProject-based / 1099Remote — US only$800–$1,200 per report
Security background required — you need to understand what you are editing. Experience translating technical findings for executive audiences. the client portal or similar portal familiarity a bonus. Volume available as engagements scale.
Pipeline
Notify Me//All contractors must be US-based and authorized to work in the United States. Background verification required before first engagement. We do not sponsor visas. Pay is project-based at 40% of engagement value — rates listed reflect typical engagement ranges per service tier. Questions? Email careers@dali-x.com.