We are seeking a highly skilled Senior Penetration Tester to join our cybersecurity consulting team in Saudi Arabia. This role requires leading advanced offensive security engagements across enterprise and government sectors, while serving as a trusted technical advisor to clients.
Key Responsibilities
- Conduct advanced Web, API, Network, Active Directory, and Cloud penetration testing engagements
- Execute Red Team operations and adversary simulation exercises aligned with MITRE ATT&CK
- Lead engagements end-to-end: scoping, exploitation, reporting, and executive debriefs
- Deliver high-quality technical and executive-level reports with clear, risk-based remediation guidance
- Support pre-sales activities including RFP responses, technical proposals, and client workshops
- Provide advisory support aligned with Saudi regulatory and compliance environments
Requirements
- 4+ years of hands-on penetration testing experience
- Strong expertise in:
- Active Directory attacks
- Web application security (OWASP Top 10)
- Mobile security
- Network exploitation techniques
- Practical experience with tools such as:
- Burp Suite
- Metasploit
- BloodHound
- Cobalt Strike
- Strong client-facing communication and reporting skills
- Ability to translate technical findings into business risk impact
Preferred Certifications
- Offensive Security certifications:
- OSCP
- OSEP
- OSWA
- OSWE
- GIAC / SANS certifications
- Hack The Box:
- CPTS
- CWES
- CWEE
- CRTO
- eCPPTX
