Mid-Senior Penetration Tester (Pen-Tester)

-
Riyadh, Saudi ArabiaPosted 1 year ago

38Applicants for1 open position

Job Details

Experience Needed:

Career Level:

Education Level:

Salary:

Job Categories:

Conduct Penetration Testing:

Perform detailed penetration tests on networks, systems, web applications, and other technologies to identify security weaknesses.
Simulate attacks to evaluate the effectiveness of security controls.
Utilize a variety of tools and techniques to gain access to systems and data, following the organization’s ethical guidelines.

Vulnerability Assessment:

Identify, report, and prioritize vulnerabilities in applications, systems, and networks.
Provide recommendations for remediation or mitigation of identified security risks.
Track and ensure that identified vulnerabilities are addressed in a timely manner.

Security Auditing and Reporting:

Prepare detailed reports of findings, including the steps taken during the penetration test, vulnerabilities found, and recommended actions.
Present findings to technical teams, management, and other stakeholders in a clear and concise manner.
Assist in developing strategies to enhance the overall security posture of the organization.

Collaboration and Consultation:

Work closely with security teams, developers, and IT staff to understand the architecture and components of systems and networks.
Provide security consultancy and advice to other departments within the organization.
Assist in the development of security policies and procedures.

Research and Development:

Stay updated with the latest cybersecurity threats, tools, techniques, and regulations.
Research and develop new testing tools and methods.
Participate in security conferences, forums, and other professional development activities.

Compliance and Standards:

Ensure all penetration testing activities comply with relevant industry standards, such as OWASP, NIST, and ISO 27001.
Support compliance efforts by testing against specific regulatory requirements (e.g., PCI-DSS, GDPR).

Bachelor’s degree in Computer Science, Information Security, or a related field.
Proven experience in penetration testing, ethical hacking, or a related cybersecurity role.
Strong understanding of network protocols, operating systems, and security technologies.
Proficiency in penetration testing tools such as Metasploit, Burp Suite, Nmap, Wireshark, etc.
Certifications such as CEH (Certified Ethical Hacker), OSCP (Offensive Security Certified Professional), or equivalent are highly preferred.
Familiarity with scripting and programming languages such as Python, Bash, or PowerShell.
Strong analytical and problem-solving skills.
Excellent communication skills, both written and verbal.

Experience with social engineering and physical security assessments.
Knowledge of cloud security and testing environments like AWS, Azure, or Google Cloud.
Experience with Red Team/Blue Team operations.
Ability to work independently and manage multiple testing projects simultaneously.

Penetration Testers can advance to roles such as Senior Penetration Tester, Security Consultant, Security Architect, or Chief Information Security Officer (CISO).