RemoteLeaf Logo
Log in Sign up

Penetration Tester

16 hours, 54 minutes ago
Pakistan
Full-time
Mid Level
Penetration Tester
Cybersecurity
Active Directory AWS Azure Bash Burp Suite Metasploit Nmap PowerShell Python SIEM SOC
Apply Now
FirmaTRUST

FirmaTRUST

FirmaTRUST provides AI-driven managed IT services and advanced cybersecurity solutions, ensuring 24/7 global human support to help businesses operate securely and efficiently without downtime.

Internet Software & Services
Founded 1996
View All Jobs 3

Description

  • Perform Active Directory penetration testing to identify privilege escalation paths, insecure configurations, and lateral movement opportunities.
  • Conduct internal and external network penetration tests to uncover vulnerabilities across enterprise infrastructure.
  • Perform web application penetration testing covering authentication, input validation, session management, and business logic.
  • Identify, analyze, and document security misconfigurations across systems, services, and network infrastructure.
  • Conduct security audits and configuration reviews against best practices and industry standards.
  • Perform risk assessments by evaluating vulnerabilities, misconfigurations, and business impact.
  • Document findings with clear risk ratings, remediation guidance, and mitigation recommendations.
  • Participate in purple-team engagements by simulating attacker techniques with defensive teams.
  • Support threat simulation exercises using real-world attack techniques and frameworks such as MITRE ATT&CK.
  • Collaborate with SOC and defensive teams to improve alerting, monitoring, and threat detection use cases.
  • Assist in validating remediation efforts through retesting and verification of fixes.
  • Prepare technical and executive-level reports summarizing findings, risks, and recommended actions.

Requirements

  • Hands-on experience in Active Directory security assessments and penetration testing.
  • Strong knowledge of network penetration testing methodologies.
  • Experience in web application security testing, including OWASP Top 10.
  • Understanding of security configuration reviews and misconfiguration analysis.
  • Experience performing vulnerability validation and risk analysis.
  • Hands-on experience with Nmap, Burp Suite, Metasploit, BloodHound, Impacket, and CrackMapExec.
  • Strong understanding of Windows security architecture and Active Directory attack techniques.
  • Knowledge of network protocols, authentication mechanisms, and common attack vectors.
  • Experience with purple-team exercises is preferred.
  • Exposure to SOC operations, SIEM platforms, or security monitoring is preferred.
  • Familiarity with the MITRE ATT&CK framework is preferred.
  • Scripting knowledge in Python, PowerShell, or Bash is preferred.
  • Exposure to cloud security assessments in Azure or AWS is preferred.
  • PNPT, eCPPT, GPEN, or GWAPT certifications are preferred.
  • Strong analytical and problem-solving mindset.
  • Ability to clearly communicate technical risks and remediation steps.
  • Good documentation and reporting skills.
  • Ability to collaborate with both offensive and defensive security teams.
  • Curiosity and passion for continuous learning in cybersecurity.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

BreachLock

Director - Pentesting Solutions

BreachLock 51-250 Professional Services

Director – Pentesting Solutions at a growing cybersecurity company, leading offensive security and penetration testing delivery, team development, client advisory, and service expansion.

India Full-time Executive Penetration Tester
Cybersecurity Network Security OWASP Penetration Testing
16 hours, 54 minutes ago
Rubrik

Infosec - Offensive Security Intern

Rubrik 1K-5K IT Services

Rubrik is seeking an Offensive Security Intern to support real-world attack simulations, vulnerability research, and security testing across cloud and emerging AI attack surfaces.

India Internship Entry Level Penetration Tester
AWS Azure Burp Suite Cybersecurity DNS GCP Go HTTP Java JavaScript Linux Metasploit Network Security Nmap Node.js Penetration Testing Python TCP/IP
1 day, 5 hours ago
Grafana

Senior Risk Management Engineer

Grafana 1K-5K IT Services

Grafana Labs is hiring a Senior Risk Management Engineer to strengthen its enterprise risk management program across a fast-scaling, remote-first cloud platform.

United Kingdom Full-time Senior Penetration Tester
$104k-$125k
1 day, 7 hours ago
PRIORITY Quality Consultants

Freelance EU Project Experts (Cybersecurity & IT Experts) (PREU0725)

PRIORITY Quality Consultants 51-250 Professional Services

PRIORITY is expanding its freelance network of cybersecurity and IT contractors to deliver consulting and technology projects for European institutions and international organizations across Europe.

Greece Europe Contract Mid Level Penetration Tester
Cybersecurity
2 days, 16 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers