About This Role
Date Posted: 01 April, 2026 Industry: IT Services and IT Consulting Location: VaporVM
Job Description:
- Perform web application, API, mobile, network, and cloud penetration testing
- Conduct black-box, gray-box, and white-box testing
- Identify vulnerabilities such as:
- OWASP Top 10 (e.g., SQL Injection, XSS, IDOR)
- Misconfigurations in cloud (Azure, AWS, OCI)
- Exploit vulnerabilities in a controlled environment to validate risks
️ Red Team & Adversary Simulation
- Execute Red Team engagements simulating real-world attack scenarios
- Perform social engineering assessments (phishing, vishing if allowed)
- Conduct lateral movement, privilege escalation, and persistence techniques
- Map findings to frameworks like:
- MITRE ATT&CK
- Cyber Kill Chain
Reporting & Risk Management
-
Prepare detailed technical reports with:
- Proof of Concept (PoC)
- Risk ratings (CVSS)
- Business impact
- Remediation recommendations
-
Present findings to both technical teams and management
-
️ Tools & Technologies
-
Use tools such as:
- Burp Suite, OWASP ZAP
- Metasploit, Nmap
- Nessus, OpenVAS
- Wireshark
-
Develop custom scripts using:
- Python, Bash, PowerShell
-
️ Cloud & DevSecOps Security
-
Assess security in:
- Microsoft Azure, AWS, Oracle Cloud (OCI)
-
Perform:
- Container security testing (Docker, Kubernetes)
- CI/CD pipeline security assessments
-
Integrate security testing into DevSecOps pipelines
Leadership & Mentorship
- Mentor junior penetration testers and analysts
- Review technical findings and reports
- Lead customer discussions and security workshops
Required Qualifications
Education
- Bachelor’s/Master’s in:
- Cybersecurity
- Computer Science
- Information Security (or equivalent experience)
Experience
- 5–8+ years in cybersecurity with strong focus on penetration testing
- Experience in:
- Web & API security testing
- Network & infrastructure testing
- Cloud security assessments
Certifications (Preferred)
- OSCP (Highly Preferred)
- CEH, eCPPT, eWPT
- CREST, GPEN
- Azure/AWS Security Certifications
Similar Jobs
Cybersecurity Analyst
Madre Integrated Engineering · Doha
Manage system patching, antivirus updates, backup and restoration of OT assets. Monitor firewall logs, security alerts, threats, anomalies, and suspicious network activity. Investigate incidents and escalate cybersecurit
5 days ago
Generate Resume ↗Senior Cybersecurity Analyst
BAE Systems · Riyadh
The role involves security monitoring, threat hunting, developing security solutions, and requires expertise in malware, intrusion detection, and SIEM technologies.
2 weeks ago
Generate Resume ↗Senior Cybersecurity Analyst
Client of LeadingEdge HR Solutions · Riyadh
Monitor cybersecurity alerts, assist in incident response, and support vulnerability assessments; requires knowledge of networking, operating systems, and analytical skills.
1 months ago
Generate Resume ↗Cybersecurity Analyst
Client of LeadingEdge HR Solutions · Riyadh
Analyze cybersecurity risks, monitor incidents, implement security measures, and conduct assessments; requires Saudi national with a degree in cybersecurity.
1 months ago
Generate Resume ↗Stop applying blindly.
Start getting hired.
Base Career automates the hardest parts of job searching — apply smarter, not harder.
AI Resume in 60s
Your resume rewritten for this exact role using the job description as the brief.
ATS-Optimized
Get past automated screening filters with the right keywords matched to each job.
Application Tracker
Track every job, follow-up, and interview in one visual kanban board.
Free plan · No credit card required