Penetration Tester

Company Description

Role Description

Penetration Tester

Responsibilities Include

• Assessing the security of web applications, networks, and systems
• Identifying and exploiting vulnerabilities
• Performing reverse engineering and malware analysis
• Conducting application security audits
• Executing red teaming exercises simulating real-world threats
• Preparing detailed technical reports with remediation recommendations

Candidate Evaluation Process

Easy Lab

• Constraint: not solvable using common/public dictionaries
• Objective: evaluate scripting approach and tooling creativity
• Focus: automation capability

Medium Lab

• Objective: assess problem-solving methodology rather than tool usage
• Focus: logical reasoning

Hard Lab

• Designed collaboratively by
• 7 experienced red team pentesters
• Reflects internal definition of real-world “hard” scenarios
• Evaluates depth of thinking, persistence, and exploitation strategy
• Primary gate for hiring

Hiring Philosophy

• 1.
• Certifications are
• not a deciding factor
• , regardless of origin or cost
• 2.
• Emphasis is placed on:
• Logical thinking
• Practical skill
• Real problem-solving ability
• Individual mindset and approach
• Applicants are expected to submit:

1. A

• concise introduction
• (no long CVs, no generated or filler text)
• 2.
• Brief explanation of:
• How they entered penetration testing
• Why they chose this field
• Something personal
• that reflects their thinking or approach
• , what company should know
• Selection is fully test-based.
• Any skilled individual is encouraged to apply.

Work Environment & Security Policy

Qualifications

• Strong expertise in:
• Reverse Engineering
• Malware Analysis
• Hands-on experience with:
• Application Security
• Red Teaming
• Solid understanding of cybersecurity principles and attack methodologies
• Proficiency with penetration testing tools and frameworks
• Strong analytical and problem-solving skills
• Clear technical communication abilities
• Degree in Computer Science, Cybersecurity, or equivalent experience
• Certifications (OSCP, CEH, GPEN, etc.) are
• optional and not prioritized
• Ability to operate in a strict, high-security environment

From Us

• Salary:

28,000 AED And month

• Maximum yearly bonus:

36,700 AED

• Daily meal allowance:
• up to 120 AED
• Health insurance
• **Zero overtime**
• — systems lock strictly on schedule
• Paid 1-week trip to Thailand (2 adults, no children) in addition to 30 days paid leave

Potential Downsides

• Systems lock strictly by timer (can be a pro or con)
• Strict deadlines based on real-world expectations
• Maximum response delay:
• 10 minutes
• (messengers or email); 10 points/month \= termination
• “Client is right” policy (with judgment); 2 negative client reviews \= immediate termination