Senior Penetration Tester

Client is seeking a skilled Senior Penetration Tester to join its Information Security team. The role involves executing advanced security assessments, identifying vulnerabilities, and recommending mitigation strategies across enterprise systems, applications, and cloud environments.

Key Responsibilities:

• Perform manual and automated penetration tests on applications, APIs, and networks.
• Conduct Red Team / Purple Team exercises and report findings with mitigation plans.
• Develop automation scripts (Python, PowerShell, Bash) for repeatable testing.
• Collaborate with SIEM/SOC teams to validate detections and strengthen defenses.
• Document findings and deliver technical and executive-level reports.

Required Skills:

• 8+ years in penetration testing, red teaming, or offensive security.
• Expertise in tools like Burp Suite, Metasploit, Nmap, Nessus, OWASP ZAP, Wireshark.
• Strong understanding of OWASP Top 10, network protocols, and cloud security (AWS/Azure/Google Cloud Platform).
• Proficient in Python or PowerShell scripting.
• Familiarity with Active Directory attacks and SIEM tools (Splunk, QRadar, Sentinel).

Preferred:

• Certifications: OSCP, GPEN, CEH (Practical) or equivalent.
• Experience in financial or enterprise environments.