Penetration Tester

The Penetration Tester is responsible for identifying and exploiting vulnerabilities in the organization's systems, applications, and networks to improve security posture. This role involves conducting thorough penetration tests, vulnerability assessments, and providing actionable remediation recommendations.

Key Responsibilities

• Perform penetration testing on web applications, networks, and systems to identify security weaknesses.
• Conduct vulnerability assessments and simulate attack scenarios to evaluate security defenses.
• Document test findings, risks, and provide detailed remediation recommendations.
• Collaborate with development and infrastructure teams to address identified vulnerabilities.
• Stay current with emerging threats, new vulnerabilities, and penetration testing tools and techniques.
• Assist in developing and improving security testing methodologies and frameworks.
• Support incident response through exploitation and analysis during security investigations.

Requirements

• Bachelor's or Master's degree in Computer Science, Information Security, or related field.
• 3+ years of experience as a Penetration Tester or in a similar ethical hacking role.
• Strong knowledge of network protocols, operating systems, and security controls.
• Hands-on experience with penetration testing tools such as Metasploit, Burp Suite, Nmap, Wireshark, and others.
• Familiarity with scripting and programming languages (e.g., Python, Bash, PowerShell).
• Understanding of common vulnerabilities and exposures (e.g., OWASP Top 10).
• Excellent analytical, problem-solving, and communication skills.
• Relevant certifications such as OSCP, CEH, or GPEN are highly desirable.
• Knowledge of cloud security and emerging technologies is a plus.