Penetration Tester

Apply

Job Summary:

As a Penetration Tester, you will play a pivotal role in identifying vulnerabilities, assessing security measures, and enhancing the overall cybersecurity posture of our clients. Your expertise in testing applications, network infrastructure, and mobile apps will be instrumental in uncovering potential weaknesses and recommending robust solutions to mitigate risks. By executing comprehensive penetration testing methodologies, you will contribute to fortifying our clients' systems against potential cyber threats.

Responsibilities:

- Conduct thorough penetration testing on a diverse range of systems, including web applications, network infrastructure, and mobile applications.

- Perform in-depth vulnerability assessments to identify potential security flaws and weaknesses in client systems.

- Collaborate with cross-functional teams to plan and execute penetration testing projects, adhering to predefined timelines and objectives.

- Utilize industry-standard tools and methodologies to simulate real-world cyber-attacks and assess the effectiveness of defense mechanisms.

- Document and communicate findings, both in written reports and verbal presentations, detailing identified vulnerabilities, potential exploits, and recommended remediation strategies.

- Stay updated on the latest cybersecurity threats, attack vectors, and vulnerabilities to ensure our testing techniques are current and effective.

- Provide guidance and recommendations to clients on improving their security posture based on penetration test results.

- Work closely with the development and IT teams to facilitate the implementation of security measures and patches.

- Collaborate with clients to understand their specific security requirements and tailor penetration testing methodologies accordingly.

- Participate in knowledge sharing and training activities to enhance the expertise of the cybersecurity team.

Qualifications:

- Bachelor's degree in Computer Science, Information Security, or related field; relevant certifications (e.g., CEH, OSCP Mandatory).

- Proven experience of 4-5 years as a Penetration Tester, with a strong track record of successfully identifying and exploiting vulnerabilities in applications, network infrastructure, and mobile apps.

- Proficiency in using a wide range of penetration testing tools, such as Burp Suite, Metasploit, Nmap, Wireshark, etc.

- In-depth understanding of various operating systems (Windows, Linux, macOS) and their security features.

- Familiarity with OWASP Top Ten and CWE/SANS Top 25 vulnerabilities.

- Experience with both manual and automated penetration testing techniques.

- Strong programming/scripting skills (e.g., Python, Ruby, PowerShell) to customize testing methodologies and tools.

- Excellent analytical and problem-solving abilities, along with a keen attention to detail.

- Effective communication skills to convey technical findings and recommendations to both technical and non-technical stakeholders.

- Ability to work independently and as part of a collaborative team.

- Strong commitment to continuous learning and staying current with the evolving cybersecurity landscape.