We are seeking a highly adaptable Penetration Tester to identify and assess security vulnerabilities across diverse environments. This role requires not only strong technical expertise but also the ability to adjust methodologies, think creatively, and respond to changing project scopes. You will collaborate with cross-functional teams to ensure robust security practices while providing pragmatic and flexible solutions to meet business needs.

This will be a 1 year fixed term contract.

Key Responsibilities:

• Conduct comprehensive penetration tests across applications, networks, and cloud environments.
• Adapt testing methodologies based on evolving project requirements and unique system architectures.
• Identify, document, and communicate actionable findings while aligning with business priorities.
• Collaborate with development, infrastructure, project team and security teams to on prerequisites and propose flexible remediation strategies.
• Customize security assessments to align with both technical and business objectives.
• Stay updated on emerging threats and adapt techniques accordingly.
• Contribute to the development of custom scripts, tools, or processes to enhance testing capabilities.

Key Qualifications:

• 3+ years of hands-on experience in penetration testing (web, mobile, network, and APIs).
• Proficiency with tools such as Burp Suite, Kali Linux, Nessus Professional, Nmap, and scripting in Python, Bash, or equivalent.
• Strong problem-solving mindset with the ability to think outside the box.
• Familiarity with frameworks such as OWASP, NIST, PTES, and MITRE ATT&CK.
• Ability to adjust testing approaches to meet the technical and business context.
• Experience in delivering clear, risk-based reports and communicating findings to technical and non-technical audiences.
• Relevant certifications (e.g., OSCP, OSWE, eWPTX) are a plus but not mandatory.

Preferred Traits:

• Flexible and able to pivot between different projects or methodologies.
• Curiosity-driven with a proactive attitude toward exploring new vulnerabilities.
• Effective communicator who can convey complex issues with practical recommendations.
• Able to balance security rigor with business needs.

All applications applied through our system will be delivered directly to the advertiser and privacy of personal data of the applicant will be ensured with security.