We’re looking for a passionate professional to strengthen our secure software development lifecycle (SDLC) and integrate security best practices into every stage of development. The ideal candidate will have hands-on experience in DevSecOps, secure coding, and vulnerability management — with VAPT skills being a plus.

Responsibilities:

• Perform in-depth vulnerability assessments and penetration tests on systems, networks, and applications to uncover security weaknesses and potential threats.
• Responsibility for reviewing and validating AI-generated outputs
• Ownership of final deliverables, regardless of AI assistance
• Ability to critically evaluate AI results and ensure they meet defined requirements
• Accountability for accuracy, quality, and compliance
• Utilize a variety of industry-standard tools and methodologies, including Nessus, Nmap, Metasploit, Burp Suite, and others, for both automated and manual testing.
• Analyze assessment results meticulously, creating detailed reports outlining identified vulnerabilities, associated risks, and recommended remediation strategies.
• Collaborate with cross-functional teams to prioritize and address discovered vulnerabilities based on their severity and potential impact on our organization.
• Stay updated on the latest security threats, vulnerabilities, and best practices in cybersecurity.
• Participate in red team exercises to simulate real-world cyber attacks, evaluating defensive measures and incident response capabilities.
• Contribute to the development and improvement of security policies, procedures, and guidelines based on assessment findings and industry standards.
• Provide mentorship and support to junior team members, including training on security assessment methodologies and tools.

Requirements:

• Hold a Bachelor’s degree in Computer Science, Information Security, or a related field

• Possess a solid understanding of common security vulnerabilities, attack vectors, and exploitation techniques.

• Have hands-on experience with security testing tools such as Nessus, Nmap, Metasploit, Burp Suite, etc.

• Familiarity with various operating systems, networking protocols, and web technologies is essential.

• Showcase exceptional analytical and problem-solving skills with great attention to detail.

• Communicate effectively, both verbally and in writing, with the ability to explain technical findings and recommendations clearly to diverse audiences.

• Preferred certifications include CEH (Certified Ethical Hacker), OSCP (Offensive Security Certified Professional), or equivalent.

• The ideal candidate demonstrates strong business acumen, translates objectives into impactful solutions, and effectively leverages AI tools for efficiency. Proficiency in Claude (mandatory) and familiarity with tools such as ChatGPT are required. An ownership mindset and the ability to deliver results independently are essential. Successful completion of a Claude-based assessment is required as part of the hiring process.

Benefits: Health Insurance (OPD/IPD), Separate Maternity Cover, Leave encashment, Car Support Program, Referral Bonus, EOBI, Bi-Annual Increment. Provident Fund, Career Growth, Bonus (benefits vary based on location)

Multiple Locations: Pakistan, India, UAE, Australia & USA.