Penetration Tester

Description :

As a Senior Penetration Tester, you will play a critical role in assessing and strengthening the security of our information systems, networks, and applications. You will conduct comprehensive penetration tests and vulnerability assessments, collaborating with internal teams to identify weaknesses and provide actionable recommendations.

Your expertise will safeguard sensitive data, protect customers from cyber threats, and enhance our overall security posture. You will also coordinate penetration tests with third-party vendors when required.

Key Responsibilities :

- Collaborate with internal product teams to understand system architectures, business goals, and operational constraints.

- Prepare detailed reports documenting findings, reproducible steps, and recommended remediation measures.

- Communicate technical findings clearly to both technical and non-technical stakeholders.

- Assist cross-functional teams in implementing security measures and mitigating identified vulnerabilities.

- Coordinate and manage penetration tests with third-party vendors when necessary, ensuring high-quality

and timely delivery.

- Contribute to the development and enhancement of testing methodologies, processes, and tools.

- Stay updated on the latest threats, vulnerabilities, and exploits, developing new testing techniques as needed.

- Conduct security tests aligned with product security requirements.

Authorities :

- Authorized to recommend remediation actions based on test results.

- Authorized to engage with internal product teams to discuss findings and security recommendations.

- Authorized to coordinate and manage penetration testing activities with third-party vendors.

Qualifications & Experience :

- Minimum 8 years of experience in penetration testing, vulnerability assessment, or security testing.

- Proven experience conducting successful penetration tests across diverse organizations and industries.

- Industry-recognized certifications such as OSCP, GPEN, or equivalent are highly desirable.

- Experience in vulnerability research (e.g., CVEs) is a plus.

- Familiarity with penetration testing tools and frameworks such as Metasploit, Burp Suite, Nessus, and Nmap.

- Strong knowledge of operating systems (Windows, Linux, mobile), databases, and web technologies.

- Deep understanding of security protocols and technologies, including firewalls, IDS/IPS, and SSL/TLS.

- Programming and scripting experience in Bash, Python, and PowerShell.

- Ability to produce clear, actionable penetration testing reports.

- Exceptional written and verbal communication skills.

Other Attributes :

- Commitment to ongoing research, professional development, and attendance at relevant conferences.

- Awareness of laws, regulations, and standards related to information security and privacy.

- High ethical standards, integrity, and confidentiality in performing penetration testing activities.