Penetration Tester  

Summary:

The Penetration Tester conducts penetration testing and vulnerability assessments to identify potential security risks in applications, networks, and IT infrastructure. The role involves collaborating with teams to remediate identified vulnerabilities, staying updated with the latest security trends, and ensuring alignment with organizational security goals. This position requires hands-on technical expertise in penetration testing and proactive involvement in improving security protocols

Duties and Resposibilities:

• Penetration testing and vulnerability assessment
• Perform penetration tests on web applications, networks, and computer systems.
• Conduct manual validation of findings to reduce false positives in reports.
• Identify and exploit vulnerabilities ethically to assess system security.
• Prepare and present detailed reports on vulnerabilities, including remediation recommendations.
• Collaborate with IT teams to implement necessary security measures.
• Collaboration and support
• Work with cross-functional teams to identify and address vulnerabilities in IT systems.
• Assist senior security analysts and engineers in large-scale projects.
• Support ongoing vulnerability scanning and management efforts.
• Participate in team knowledge transfers and internal training sessions.
• Research and continuous improvement
• Stay updated on emerging threats, attack vectors, and penetration testing tools.
• Contribute to the improvement of penetration testing methodologies and practices.
• Document and share best practices and findings with the security team.

Additional Tasks

• Employ social engineering techniques to identify human-related security risks.
• Assist in ensuring compliance with security frameworks and standards.
• Support security program initiatives and audits as necessary.

Skills

• Ability to effectively communicate findings and recommendations to technical and non-technical stakeholders.
• Analytical thinking and problem-solving skills for identifying and mitigating vulnerabilities.
• Strong teamwork and collaboration skills.

• Education – Bachelor’s degree/Diploma in Computer Science, Cybersecurity, Information Technology, or any related field.
• Relevant certifications such as Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), or equivalent are highly preferred.
• Related Work Experience - At least 2-3 years hands-on experience in penetration testing, vulnerability assessment, or related fields.
• Proven experience working with penetration testing tools such as Burp Suite, Metasploit, and Nmap.
• Solid understanding of networking, operating systems, and application security.
• Familiarity with security standards and frameworks (e.g., OWASP, NIST).
• Awareness of the latest cybersecurity threats, attack methods, and defense mechanisms.
• Proficiency in using various penetration testing tools and platforms.
• Proficiency in scripting and programming languages such as Python, JavaScript, or Bash.