As a  Penetration Testing Specialist, you will:

• Perform comprehensive penetration testing on internal and external network infrastructures, web applications, and mobile platforms.
• Identify, document, and report security vulnerabilities with actionable recommendations for remediation.
• Simulate real-world cyberattacks to test the resilience of existing security measures.
• Collaborate with development and IT teams to provide guidance on secure coding practices and system hardening.
• Maintain detailed records of testing activities, including methodologies, findings, and recommendations.
• Stay updated on emerging security threats, trends, tools, and methodologies to enhance penetration testing capabilities.’
• Assist in the development and execution of security protocols, policies, and incident response strategies.
• Provide post-assessment support and assist in prioritizing remediation efforts.
• Support threat modeling efforts to identify potential vulnerabilities before deployment.
• Contribute to achieving strategic, operational, and compliance security objectives by aligning with security policies, standards, and best practices.

What You Bring to the Table:

• 6-8 years of experience in vulnerability assessment and penetration testing.
• Proven experience in delivering infrastructure and application security penetration tests.
• Strong expertise in security testing cloud services and API-based technologies (e.g., IaaS, PaaS, SaaS, FaaS).
• Industry-recognized certifications such as OSCP, OSCE, CREST, QSTM, SANS/GIAC, CRTP, CRTO, or equivalent.
• Understanding of security and application security standards, best practices, and compliance frameworks (e.g., NIST, OWASP, PCI-DSS, GDPR, CIS Benchmarks, UK NCSC guidelines).
• Proficiency with the MITRE ATT&CK Framework, including tactics, techniques, and procedures used by various APTs.
• Experience in adversary or attack simulation, including Red Teaming or Purple Teaming exercises.
• Hands-on experience with penetration testing tools such as Cobalt Strike, Caldera, Atomic Red Team, Pentera, Nessus, Burp Suite, and OSINT tools.
• Exposure to Artificial Intelligence and Machine Learning penetration testing.
• Familiarity with different testing standards and methodologies (OWASP, OSSTM, PTES, etc.).
• Ability to analyze code with an understanding of at least one programming language.

You Should Possess the Ability To:

• Apply logical reasoning, analytical thinking, and problem-solving skills in security assessments.
• Deliver clear and detailed reports with real-world risk analysis and mitigation strategies.
• Work effectively in cross-functional teams using agile methodologies.
• Take ownership, work independently, and demonstrate a strong inclination to learn and grow.
• Communicate technical findings clearly to both technical and non-technical stakeholders.
• Maintain attention to detail while managing multiple security assessments and projects.

What We Bring to the Table:

• A dynamic and challenging security environment where innovation and proactive defense strategies are encouraged.
• Opportunities to work with cutting-edge penetration testing tools and advanced attack simulation frameworks.
• A collaborative culture with industry professionals and security teams focused on continuous learning.
• Access to training, industry conferences, and professional certifications to advance your skills.
• A commitment to fostering a security-first mindset and aligning with industry best practices.