Penetration TesterFull-time

Job description

About the Role:

We are seeking a highly skilled Penetration Tester (Ethical Hacker) to evaluate the security posture of our applications, systems, and networks. The ideal candidate will proactively identify vulnerabilities, exploit weaknesses in a controlled environment, and provide actionable recommendations to strengthen security.

Key Responsibilities:

• Conduct penetration tests on web applications, networks, cloud environments, APIs, mobile applications, and infrastructure.
• Identify, exploit, and report security vulnerabilities and weaknesses.
• Perform vulnerability assessments and risk analysis, prioritizing remediation actions.
• Develop and execute red team exercises and simulate advanced attack scenarios.
• Collaborate with IT, DevOps, and development teams to provide actionable remediation guidance.
• Document testing methodologies, findings, and recommendations in comprehensive security reports.
• Keep up-to-date with the latest attack vectors, exploits, and penetration testing tools.
• Assist in security awareness training and provide recommendations to improve security controls.
• Ensure all testing is performed in line with legal and ethical guidelines.

Preferred Qualifications:

• Professional certifications such as CEH, OSCP, OSWE, GPEN, CREST, or CISSP.
• Experience in red teaming, social engineering, or advanced persistent threat simulation.
• Knowledge of automation and scripting (Python, Bash, PowerShell).
• Exposure to DevSecOps practices and security integration in CI/CD pipelines.
• Familiarity with compliance frameworks (ISO 27001, NIST, PCI DSS, GDPR, HIPAA).

Role: IT Security - Other

Industry Type: Education / Training

Department: IT & Information Security

Employment Type: Full Time, Permanent

Role Category: IT Security