Location: Pakistan, Remote
Employment Type: Subcontractor
About Us:
As a leading Cybersecurity Consulting firm based in Canada, we provide top-tier security services to clients globally. Our team comprises skilled professionals who deliver comprehensive security assessments for our clients. We are seeking an experienced Senior Penetration Tester to join our team. This position is ideal for someone with a proven track record in offensive security who can take ownership of client engagements and mentor junior team members.
Job Summary:
As a Senior Offensive Security Consultant (Penetration Tester), you will lead advanced penetration testing engagements, contribute to Red Team operations, and act as a trusted advisor to our clients. You will play a critical role in identifying and mitigating security risks while mentoring less experienced team members and helping them grow in their careers.
Key Responsibilities:
- Lead Penetration Testing Projects:
Plan, execute, and oversee complex penetration testing engagements for clients. This includes identifying, assessing, and documenting critical security vulnerabilities, ensuring adherence to industry standards, and delivering high-quality results. - Advanced Vulnerability Analysis and Reporting:
Perform in-depth analysis of vulnerabilities, exploit them where applicable, and produce detailed, actionable reports. Provide clear recommendations and remediation strategies to clients, presenting findings to technical and executive audiences. - Mentorship and Knowledge Sharing:
Guide and mentor junior penetration testers, providing training, feedback, and opportunities for skill development. Actively foster a culture of collaboration and continuous improvement within the team. - Red Team Operations and Threat Simulation:
Participate in Red Team engagements, simulating adversarial attack scenarios to test and improve clients’ security defenses. Innovate new techniques to enhance testing methodologies. - Stay at the Forefront of Offensive Security:
Research and implement cutting-edge offensive security techniques, tools, and tactics (TTPs). Share insights with the team and actively apply new knowledge to engagements.
Required Qualifications:
- Experience:
- 5+ years of professional experience in offensive security, focusing on Penetration Testing and/or Red Team operations.
- Demonstrated expertise in leading penetration testing projects and client interactions.
- Certifications:
- OSCP (Offensive Security Certified Professional) or equivalent.
- Advanced certifications such as OSWE (Offensive Security Web Expert), OSCE (Offensive Security Certified Expert), CRTL (Certified Red Team Lead), or GXPN (GIAC Exploit Researcher and Advanced Penetration Tester) are highly desirable.
- Technical Skills:
- Proficiency in advanced penetration testing tools and methodologies (e.g., Nmap, Burp Suite Pro, Metasploit, Cobalt Strike).
- Deep knowledge of networking, operating systems, and enterprise security architectures.
- Proficient in scripting and automation using Python, PowerShell, or Bash.
- Language:
- Fluent in English with excellent verbal and written communication skills.
Preferred Qualifications:
- Proven experience leading Red Team engagements and delivering threat simulation exercises.
- Familiarity with cloud environments (AWS, Azure, GCP) and their security practices.
- Active involvement in the cybersecurity community, such as conference speaking, publishing research, or participation in CTFs (Capture the Flag) and platforms like HackTheBox.
Hours:
40 hours per week.
Compensation:
Market-competitive salary based on experience and qualifications.
Application Process:
Interested candidates can submit their resume and cover letter to [email address].