PENETRATION TESTING SPECIALIST

Key Responsibilities

Penetration Testing & Security Assessments

• Conduct comprehensive penetration testing on web applications, mobile applications, APIs, networks, cloud environments, and infrastructure.
• Perform vulnerability assessments and validate security findings through manual testing.
• Execute internal and external network penetration testing engagements.
• Assess security controls, identify weaknesses, and evaluate potential business impacts.
• Simulate real-world attack scenarios, including adversary emulation and red team exercises.

Application Security

• Perform secure code reviews and application security assessments.
• Identify vulnerabilities such as:OWASP Top 10Injection attacks (SQLi, Command Injection)Cross-Site Scripting (XSS)Cross-Site Request Forgery (CSRF)Authentication and Authorization flawsBusiness Logic vulnerabilities
• Assess RESTful and GraphQL APIs for security weaknesses.

Cloud & Infrastructure Security

• Conduct security assessments of cloud platforms such as AWS, Azure, and GCP.
• Evaluate IAM configurations, network security controls, container security, and cloud-native services.
• Perform Active Directory and Windows/Linux security assessments.
• Assess Kubernetes and containerized environments.

Reporting & Remediation

• Prepare detailed technical and executive-level penetration testing reports.
• Clearly document findings, risk ratings, proof-of-concept exploits, and remediation recommendations.
• Present findings to technical teams, management, and stakeholders.
• Support remediation validation and security re-testing activities.

Security Research & Innovation

• Stay current with emerging threats, attack techniques, and vulnerabilities.
• Develop custom scripts, tools, and automation to enhance testing capabilities.
• Participate in threat modeling and security architecture reviews.
• Contribute to internal security standards, methodologies, and best practices.

Required Skills & Experience

Technical Skills

• 8+ years of hands-on penetration testing and offensive security experience.
• Strong expertise in:Web Application Security TestingAPI Security TestingMobile Application Security Testing (iOS/Android)

Interested candidate please share your updated copy of resume at [email protected]

( To receive a quick response, kindly leave a message on the WhatsApp number +65 92333815)