Operate a hands-on role involving penetration testing and vulnerability assessment activities of complex applications, networks and infrastructure

Develop and maintain security testing plans to continuously exploit vulnerabilities and weaknesses.

Automate penetration and other security testing on web applications

Develop meaningful metrics to reflect the true posture of the environment allowing the organization to make sound decisions based on risk based methodology

Produce action-based, threat-based, reports on security testing results

Consult with application developers, systems administrators, and management to demonstrate information security testing results, explain the current available threats, and consult on remediation (needed action plan).

Perform penetration testing and vulnerability research of complex proprietary software and hardware for client services.

Identify and assess vulnerabilities in systems and applications. This includes utilizing manual and automated testing methods to find and exploit code flaws, misconfigurations, and insecure software.

Must be updated with the latest global / local market trends in security threats and vulnerabilities.

Write clear and concise penetration testing reports detailing findings and recommendations

Qualifications and Experience:
Bachelor’s degree in IT or computer Science, or related field.

Comprehensive and practical knowledge of OWASP

Good understanding and knowledge of codes languages and knowledge of modifying and compiling exploit codes

Have professional certifications such as CEH, OSCP

For the Pen-Tester Officer from 3-5 years of relevant experience

For the Senior Pen-tester Officer from 5-7 years of relevant experience

Experience within Banking Industry will be considered as an asset

Skills:
Excellent command of English and Arabic languages (written and spoken)

Excellent communication skills

Excellent planning and organizing skills

Excellent Business Acumen of external market and up-to-date market trends and practices.