Penetration Tester

About This Role

Company Description

PWN-ALL is a licensed cybersecurity and software development company headquartered in Dubai, United Arab Emirates. The company specializes in penetration testing, ransomware recovery, smart contract auditing, AI-driven cybersecurity, and custom software development.

It provides advanced security and technology solutions to governments, enterprises, and high-value digital platforms worldwide. With expertise across sectors such as government, law enforcement, healthcare, financial services, and crypto platforms, PWN-ALL delivers tailored solutions aligned with regulatory and operational requirements.

The company emphasizes real-time threat detection, automation, and strict confidentiality to strengthen critical digital infrastructures globally.

Role Description

This is a full-time, on-site role for a Penetration Tester based in Dubai, United Arab Emirates.

Responsibilities include:

• Assessing the security of web applications, networks, and systems
• Identifying and exploiting vulnerabilities
• Performing reverse engineering and malware analysis
• Conducting application security audits
• Executing red teaming exercises simulating real-world threats
• Preparing detailed technical reports with remediation recommendations

Candidate Evaluation Process

All applicants are required to complete three internal labs :

Easy Lab:

• Constraint: not solvable using common/public dictionaries
• Objective: evaluate scripting approach and tooling creativity
• Focus: automation capability

Medium Lab:

• Objective: assess problem-solving methodology rather than tool usage
• Focus: logical reasoning

Hard Lab

• Designed collaboratively by 7 experienced red team pentesters
• Reflects internal definition of real-world “hard” scenarios
• Evaluates depth of thinking, persistence, and exploitation strategy
• Primary gate for hiring

Hiring Philosophy

1. Certifications are not a deciding factor , regardless of origin or cost
2. Emphasis is placed on:

• Logical thinking
• Practical skill
• Real problem-solving ability
• Individual mindset and approach

Applicants are expected to submit:

1. A concise introduction (no long CVs, no generated or filler text)
2. Brief explanation of:

• How they entered penetration testing
• Why they chose this field
• Something personal that reflects their thinking or approach , what company should know

Selection is fully test-based.

Any skilled individual is encouraged to apply.

Work Environment & Security Policy

1. Work is conducted strictly on company-issued devices : Lenovo ThinkPad P14s and Google Pixel
2. Personal devices are not permitted inside the workspace. Includes phones, laptops, AirPods, and similar electronics
3. All personal items must be stored in secured lockers before entry
4. Environment is designed for high-security operations and confidentiality

Qualifications

Strong expertise in:

• Reverse Engineering
• Malware Analysis

Hands-on experience with:

• Application Security
• Red Teaming
• Solid understanding of cybersecurity principles and attack methodologies
• Proficiency with penetration testing tools and frameworks
• Strong analytical and problem-solving skills
• Clear technical communication abilities
• Degree in Computer Science, Cybersecurity, or equivalent experience
• Certifications (OSCP, CEH, GPEN, etc.) are optional and not prioritized

Ability to operate in a strict, high-security environment

From Us

• Salary: 28,000 AED / month

• Maximum yearly bonus: 36,700 AED

• Daily meal allowance: up to 120 AED

• Health insurance

• Zero overtime — systems lock strictly on schedule

• Paid 1-week trip to Thailand (2 adults, no children) in addition to 30 days paid leave

Potential Downsides

• Systems lock strictly by timer (can be a pro or con)

• Strict deadlines based on real-world expectations

• Maximum response delay: 10 minutes (messengers or email); 10 points/month = termination
• “Client is right” policy (with judgment); 2 negative client reviews = immediate termination