About the Role

Perform advanced penetration testing on web, mobile, API, cloud, network and infrastructure environments.

Responsibilities

Conduct manual exploitation, develop proof-of-concepts, and validate critical vulnerabilities. Identify security weaknesses, misconfigurations, and architectural flaws using both automated and manual assessment techniques. Execute adversary simulations and Red Team activities aligned with industry frameworks such as MITRE ATT&CK. Evaluate the effectiveness of detection and response by simulating real-world attack scenarios. Prepare high-quality technical and executive penetration testing reports with clear risk ratings, business impact, and remediation guidance. Collaborate with the Cyber Defence/SOC team to identify detection gaps and enhance visibility across security monitoring tools. Work with asset owners and system administrators to ensure vulnerabilities are remediated effectively and within agreed timelines. Support incident response investigations where attacker techniques or exploitation are involved. Stay updated on emerging threats, zero-day vulnerabilities, and offensive security techniques. Mentor junior team members, deliver knowledge-sharing sessions, and support offensive security capability development.
Qualifications

Bachelor’s degree in computer science, Information Security, or a related field.

Required Skills

OSWE - Offensive Security Web Expert OSEP - Offensive Security Experienced Penetration Tester OSCP - Offensive Security Certified Professionale WPT – e Learn Security Web Penetration Tester CRTO - Certified Red Team Operator CEH - Certified Ethical Hacker