Job Type:
Full Time
Job Location:
Egypt
Nationality:
Any Nationality
Salary:
Not Specified
Gender:
Not Specified
Arabic Fluency:
Not Specified
Job Function:
IT - Software & Web Development
Company Industry:
Telecoms
About the role
Overview:
We are looking for a highly capable and motivated security testing supervisor to support and lead hands-on penetration testing efforts across infrastructure, applications, and enterprise systems. This role involves executing detailed technical assessments, coordinating with cross-functional teams, and contributing to the continuous improvement of the organization's offensive security capabilities.
Key responsibilities:
Perform hands-on penetration testing and vulnerability assessments on:
Web applications, mobile apps (iOS/android), cloud platforms, and internal networks
Active directory and endpoint environments
APIs, firmware, and enterprise systems
Utilize industry-standard security tools such as:
Burp Suite Pro, Nmap, Metasploit, Nessus, Acunetix, Cobalt Strike, etc.
Apply penetration testing frameworks and methodologies:
OWASP Top 10, MITRE ATT&CK, PTES, NIST SP 800-115
Conduct manual exploitation and advanced techniques to simulate real-world attacks and identify weaknesses in detection and response.
Participate in secure code reviews and security architecture assessments where required.
Document findings and deliver high-quality technical reports and executive summaries.
Collaborate with application owners, developers, and infrastructure teams to ensure timely remediation and secure deployment.
Required qualifications:
Bachelor's degree in computer science, information security, or a related technical discipline.
Minimum of 3+ years of experience in penetration testing, ethical hacking, or application security.
Proficiency in using offensive security tools and manual testing techniques.
Solid understanding of application, network, and mobile security principles.
Experience testing cloud environments and APIs is a strong advantage.
Preferred skills & experience:
Strong knowledge in using:
Burp Suite (Pro), OWASP ZAP, Metasploit, Nessus, Wireshark
Familiarity with scripting or automation in Python, Bash, or PowerShell
Experience with secure development practices and DevSecOps principles
Exposure to mobile app testing tools and dynamic analysis
Knowledge of red teaming or threat emulation exercises is a plus
Certifications (preferred):
One or more of the following:
OSCP, eWPT, GWAPT, GMOB, CEH, eMAPT, OSWE, CISSP
