Job Purpose:

• Responsible for providing software testing and penetration testing of the target system's security using known techniques and tools as well as self-designed techniques and tools to meet engagement objectives.

Job Responsibilities:

• Perform web, mobile application testing, source code reviews, desktop application testing, and network penetration testing.
• Utilize attacker tools, tactics, and procedures used to perform analysis and identify vulnerabilities.
• Develop scripts, tools, or methodologies to enhance penetration testing processes.
• Implement static and dynamic security testing as part of automated application security testing process within CI/CD pipelines Provide black-box penetration testing utilizing tools and techniques to conduct cybersecurity evaluations for highly specialized network communication systems Perform reconnaissance, privilege escalation persistence, lateral movement, and payload generation for multiple targets.
• Oversee penetration testing of all systems in order to identify system vulnerabilities.
• Simulate security breaches to test a system's relative security.
• Performs vulnerability scans of the target environment and interprets the results for next step actions. Effectively communicate findings and strategy to business stakeholders, including technical and executive leadership.
• Draft assessment reports documenting findings and level of risk, while also offering suggested potential solution

Job Qualifications:

• Bachelor’s degree in Engineering or computer science.
• 3–5 years of relevant experience.
• Proven expertise in offensive security, including vulnerability identification, exploitation, and adversary-style assessments.
• Hands-on experience with advanced exploitation, web/mobile/API/Active Directory/cloud security testing, scripting (Python, Bash, PowerShell), red teaming, and threat modeling.
• Strong background in securing and hardening operating systems and applications across multiple platforms (Windows, Mac OS, Unix/Linux, and mobile).
• Familiarity with solution evaluations across diverse technology stacks, application architectures, and hosting environments.
• Knowledge of enterprise solutions from both functional and security perspectives.
• Excellent reporting and executive communication skills.
• Preferred certifications: OSCP/OSCE, CREST, CEH, or cloud security-related certifications.

• للتقديم الان