Offensive Security Specialist

union coop Dokki, Giza

Applicants for
1 open position
In Consideration
Not Selected
Experience Needed:
More than 7 years
Career Level:
Experienced (Non-Manager)
Job Type:
Full Time
Education Level:
Bachelor's Degree
1 open position
About the Job
  • Penetration Testing (Ethical Hacking) monitoring, identifying, and exploiting security vulnerabilities in web-based applications, mobile applications, infrastructure networks, and systems.
  • Conduct penetration testing, identifying vulnerabilities, and providing remediation steps.
  • Planning and executing penetration tests with the larger team
  • Solid knowledge and experience of using a variety of penetration testing or threat modeling tools including open source and commercial
  • Probe for vulnerabilities in web applications, mobile applications, fat/thin client applications, and standard applications.
  • Pinpoint methods that attackers could use to exploit weaknesses and logic flaws.
  • Incorporate business considerations (e.g. loss of earnings due to downtime, cost of engagement, etc.) into security strategies.
  • Research, document and discuss security findings with management and IT teams.
  • Experience of threat reporting and assessing vulnerabilities based on industry standards
  • Review and define requirements for information security solutions.
  • Identifying threats using threat risk modeling and creating solutions or mitigation approaches
  • Solid understanding of MITRE attack methodology and procedures. Must be familiar with the attack kill chain and RED Teaming Tactics.
  • Should work as a RED teamer within the team and carry out Red Team activities to discover new threats and risks within the infrastructure and provide remedial actions.
  • Collaborate with the SOC team to close the findings and provide the control objective assurance.
  • Good understanding of Secure SDLC processes and procedures and how to implement secure coding practices within the software/application.
  • Experience with secure code review both with the help of commercial tools and manual procedures.
  • Should work and emulate the real-world attacker to plan and craft the attack and then provide the remedial actions with cost/benefit analysis.
  • Experience with a scripting language like python/bash/Perl to automate pen testing procedures and tasks.
Job Requirements
Key Skills:
  • Full-stack understanding of end-to-end application communications.
  • Familiar with tools such as Nessus, Burp Suite, Cobalt Strike, Kali Linux,
  • Security software countermeasures
  • Comfortable on the command line for NMAP, Metasploit, Windows/Linux shells, etc.
  • Cyber attacker mindset, a good learner with an innovative mind, and problem-solving abilities.
  • Must have OSCP
  • Knowledgeable in both Linux and Windows OS and their internals
Education & Qualification
  • Bachelor of Engineering
  • +7 years of experience in exploitation and vulnerability research, penetration testing, or related fields.
  • Experience in secure code review, coding design development, and risk mitigation. Working within a growing team of Union Coop's Penetration Testers working on cyber-security assessments, vulnerability detection, and improving the code's security.
  • This will involve prior experience in programming/scripting knowledge and experience with either .Net / Java / Scala / Python / PHP / Magneto, also an ability to find design flaws in different programming languages, bottlenecks and architecture misconfigurations, and Knowledge of Cryptography.
  • The position will be based at Union Coop's Research & Development CoE in Egypt.
About this Company

Union Coop was established by Ministerial Resolution No. 31/2 dated May 24, 1982, issued by the Ministry of Labour and Social Affairs at the time. The aim of the establishment is to enhance the social and economic conditions of members and to serve the local community in where... (More)

See all Careers and Jobs at union coop
Signup for an employer account and Post your Jobs!