Cybersecurity Penetration Tester (Egypt)

CYBERSECURITY PENTESTER

Performing white hacking and ethical cyberattacks on client infrastructure and services to identify weaknesses and propose remedial measures to heighten cybersecurity and resiliency.

Alexandria, Egypt (San Stefano)

Job Type: Fulltime Reports to: Senior Cybersecurity Analyst

Are you an experienced pentester with industry certifications such as CEH, CompTIA Pentest+, CREST, OSCP or equivalent? Can you plan and perform pentesting? We are looking for penetration testers to join a growing team of consultants in testing customer networks, web apps, and IOS/Android apps. Will be exposed to an ever-changing realm of customer devices and technologies, finding weaknesses and vulnerabilities in products and service that results in a continuous cycle of improvement.

Experience

The ideal candidate should have extensive experience with cybersecurity tools and practices, including conducting penetration tests on various systems, both externally and internally, to simulate potential threats from diverse attack vectors. They should be well-versed in published vulnerabilities, thorough risk assessments, testing patterns, identifying wireless vulnerabilities, and implementing effective mitigation strategies. A commitment to continuous learning is essential, with the candidate staying up-to-date with the latest CVEs, cybersecurity tools, and news to remain relevant in the rapidly evolving cyber threat landscape. Proficiency in industry-leading penetration testing tools such as Qualys, Nessus, and Burp Suite is required, along with experience using open-source CLI tools like nmap, SQLi, and Ffuf. Additionally, the candidate should possess the ability to write scripts and develop personalized tools, demonstrating a strong understanding of scripting languages and tool customization to enhance testing efficiency and effectiveness. Personal Characteristics and Skills

• Ability to speak fluently and write clearly in English.
• Good customer engagement skills.
• Adaptable, welcomes change, comfortable as a self-starter.

• Ability to work independently and as part of a team.
• Comfortable with ambiguities that need problem-solving.
• Demonstrate initiative, passion, and resourcefulness.
• Maintain a strong work ethic and a high degree of accountability.

Responsibilities As a cybersecurity pentester with others on a team, you will:

• Perform asset discovery and vulnerability scanning.
• Plan pentest attack simulations and identify targets.
• Create internal/external testing plans with defined criteria for pass/fail.
• Execute tests and populate results with findings, noting noteworthy observations.

• Utilize various methodologies, tools, and techniques, including manual and automated penetration testing, to simulate real-world cyber-attacks on target systems.
• Work with a team to compile an assessment report with an executive summary and technical summary.
• Develop comprehensive reports outlining identified vulnerabilities, risks, and recommendations for remediation.
• Collaborate with clients to develop and implement effective security measures, including patching, configuration changes, and system hardening.
• Keep abreast of the latest cybersecurity trends, vulnerabilities, and attack vectors.

• Work with a team to present recommendations for improvement.
• Develop improvements in terms of scripts, tools, techniques to enhance the service.
• Continuously improve personal skillset and stay up-to-date with penetration testing tools, techniques, and best practices.
• Work closely with other team members, including security analysts and engineers, to ensure a holistic approach to cybersecurity.
• Assist in the development and refinement of penetration testing methodologies and procedures.

• Conduct security awareness training for clients, as needed.
• Participate in internal security audits and assessments to maintain the companys own security posture.

Minimum Qualifications

• Bachelors degree; advanced degree in related field is desirable.

• 3 to 5 years professional experience in pentesting role.
• Must have cybersecurity pentesting certifications, vulnerability assessment, or a related cybersecurity role.
• Strong knowledge of various operating systems, networking protocols, web technologies, and mobile platforms.
• Knowledge of pentesting frameworks and methodologies.
• Previous experience coordinating and running pentesting engagement and proposing corrective actions.

• Willingness to travel occasionally to client sites, as required.

Preferred Qualifications

• Experience writing selenium scripts.
• Experience writing Python scripts.

• Exploitation development and depth in vulnerability research.
• At least five years experience in cybersecurity.
• Loose understanding of ITIL service management framework could be helpful but not essential.
• PCI Qualified Security Assessor quite helpful to the company.

Location of Job Opportunity

The office is located within the Regus Business Center at 161 Abdel Salam Aref Street, San Stefano, Alexandria, Egypt. You will be working with other team members. You can sometimes work remotely (as arranged with your manager) from your home office; it must be equipped with stable Internet and minimal background noise disruption.

Working Hours

This opportunity supports customers in the EU, UK and US. As an average, be prepared to work 11:00am to 8:00pm Egypt Standard Time, with a break for lunch, although flexibility will be needed as occasionally you may need to work a little later when meeting with US colleagues.

Paid Time Off

Paid-time-off (PTO) is four weeks and can be spent for any purpose such as national or religious holidays, vacation, sick leave, etc.