CYBERSECURITY PENETRATION TESTER

We are looking for smart, self-motivated, and skilled individuals who really want to take the next step in developing their careers and shaping their future in cybersecurity.

Job Description:
• Website, web, and native application, and API penetration testing across a broad range of targets and clients
• Testing public and private, wired and wireless, network and networked services.
• Mentoring junior members of the team.
• Working directly with customers and stakeholders to build long-term relationships and identify security vulnerabilities and provide remediation advice for resolution.
• Contributing to security assurance strategies, tools, and practices to maintain efficient and effective outcomes for clients
• Integration of security assurance activities within various projects.

Additional requirements:
• 3+ years of full-time penetration testing experience.
• A good track record with bug bounties, for example with one or more verifiable achievements such as:
a. CVE credits for high-severity vulnerabilities such as RCE, SSRF, Deserialization, SQLi, etc.
b. Participation in reputable CTFs and bug bounty programmes.
• Ability to self-manage and take responsibility for all aspects of penetration testing and reporting.
• Strong and clear communication skills – and the ability to communicate security and vulnerability concepts and findings with clarity to both internal and customer stakeholders.
• In-depth knowledge and experience with penetration testing frameworks, tools, and methodologies, such as OWASP and NIST, Burp Suite, and Kali Linux.
• Ideally you will have certifications in OSCP or equivalent (OSWE or equivalent preferred) and other certs from Offensive Security, GIAC, CREST, and ECCouncil.