Senior Penetration Tester & Red Team Expert

🎯 Job Summary

We are seeking a highly skilled and experienced Senior Penetration Tester & Red Team Expert to lead and execute advanced offensive security operations within our dynamic cloud solutions environment. This role is critical in identifying vulnerabilities, simulating sophisticated attack campaigns, and enhancing organizational resilience against evolving cyber threats. The ideal candidate will possess deep expertise in penetration testing, red teaming, and cloud security, with a proven ability to provide strategic guidance and technical leadership.

🔑 Key Responsibilities

1. Penetration Testing

• Conduct comprehensive penetration tests across cloud environments, web applications, mobile applications, APIs, and infrastructure.
• Identify, exploit, and document vulnerabilities to demonstrate real-world risk impact.
• Deliver actionable remediation recommendations to development and operations teams.

2. Red Team Operations

• Plan, lead, and execute full-scope red team engagements emulating Advanced Persistent Threats (APTs).
• Simulate multi-stage attack campaigns, including phishing, privilege escalation, lateral movement, persistence, and data exfiltration.
• Collaborate with blue teams to enhance detection capabilities and incident response effectiveness.

3. Cloud-Specific Security Testing

• Perform cloud penetration testing across AWS, Azure, and GCP environments.
• Assess cloud-native applications, serverless architectures, container security, and identity and access management (IAM) configurations.
• Evaluate security posture against cloud-specific threats and misconfigurations.

4. Leadership & Collaboration

• Mentor and guide junior penetration testers and red team members on advanced offensive techniques.
• Develop and refine methodologies, playbooks, and custom tools for offensive security testing.
• Produce detailed technical reports and executive summaries to communicate findings and risks effectively.
• Work closely with threat intelligence, SOC, and incident response teams to foster a holistic cybersecurity defense strategy.

🧠 Qualifications & Experience

Education & Certifications

• Bachelor’s degree in Cybersecurity, Computer Science, or a related field (or equivalent practical experience).
• Preferred certifications:
  • Penetration Testing: OSCP, GPEN, GWAPT, CEH (Practical)
  • Advanced/Red Team: OSEP, OSCE, GXPN, CRTO, Certified Simulated Attack Specialist
  • Cloud Security: CCSP, AWS Certified Security – Specialty, Azure Security Engineer Associate

Experience

• 7–9 years of professional experience in penetration testing and offensive security.
• Proven track record in leading or actively participating in full-scope red team operations.
• Extensive hands-on experience with cloud security testing in AWS, Azure, and/or GCP.

Technical Skills

• In-depth knowledge of:
  • Network protocols, operating systems (Windows/Linux), and Active Directory.
  • Web application vulnerabilities (OWASP Top 10), mobile app security, and API security.
  • Cloud security concepts, including IAM, networking, storage, and serverless security.
• Proficiency with offensive security tools such as:
  • Metasploit, Burp Suite, Cobalt Strike, Mythic, Empire, BloodHound, and custom exploit frameworks.
• Strong scripting and automation skills in Python, PowerShell, and/or Bash.

Soft Skills

• Excellent communication skills, with the ability to convey complex technical issues to both technical and non-technical stakeholders.
• Strong analytical and problem-solving abilities.
• Leadership qualities with a focus on team mentorship and knowledge sharing.

⏰ Work Arrangements

• Work Week: Sunday to Thursday
• Time Zone: KSA (Saudi Arabia Time)

🌟 Why Join Us?

• Opportunity to work on cutting-edge cloud security challenges in a fast-evolving industry.
• Collaborate with a talented and motivated team of cybersecurity professionals.
• Contribute to enhancing the security posture of a leading cloud solutions provider.
• Competitive compensation package and opportunities for professional growth.