Penetration Tester

Position Overview:

We’re seeking a seasoned Penetration Tester with 5+ years of hands-on experience in penetration testing and vulnerability assessments. You will evaluate our IT and IoT environments, lead adversary simulation exercises, review security configurations, and deliver clear, actionable reports for remediation. EC-Council’s CEH or equivalent certifications required.

Responsibilities:

• Execute penetration tests across QSAB’s assets, including IT infrastructure and IoT systems.
• Perform vulnerability assessments and manage remediation workflows.
• Conduct detailed security device configuration reviews.
• Design and run adversary simulation scenarios to test defensive posture.
• Document analysis, findings, and risk mitigations in comprehensive reports.
• Collaborate effectively with cross-functional stakeholders to drive security improvements.
• Monitor emerging threats, tools, and best practices to keep the team ahead of risks.

Required Qualifications:

• 5+ years of experience in penetration testing and vulnerability assessment.
• CEH or equivalent recognized cybersecurity certification.
• Proficient in scripting (Perl, Python, PowerShell, JavaScript, VBScript, Ruby).
• Demonstrable experience with VA tools and pentesting frameworks.
• Familiarity with security principles, frameworks (e.g., OWASP, MITRE ATT&CK), and best practices.
• Strong communication, analytical thinking, and reporting capabilities.

Desirable:

• Experience in IoT architecture security.
• Knowledge of cloud-based testing scenarios.
• Exposure to red teaming or advanced threat simulations.