Job Summary: We are seeking an Information Security Specialist with a focus on Offensive Security to identify and exploit vulnerabilities in corporate environments. Key Highlights: 1. Focus on Offensive Security and penetration testing 2. Lead role in managing penetration testing projects 3. Investigative mindset to think like an attacker **Position: Information Security Specialist** ================================================= **Focus: Offensive Security (Penetration Testing)** We are looking for an **Information Security Specialist with a focus on Offensive Security**, who will strategically and technically identify and conduct controlled exploitation of vulnerabilities in corporate environments. If you possess an investigative mindset, enjoy thinking like an attacker to defend as a defender, and are proficient in intrusion testing of web applications, APIs, and infrastructure… this position is for you. Here, you will take the lead in managing penetration testing projects, generating executive reports, and providing technical support to development teams to strengthen security posture. Job Mission: Operate on the offensive security front, conducting technical and practical assessments in corporate environments, with a focus on intrusion testing and vulnerability analysis of web applications, APIs, and infrastructure. **Responsibilities and Duties** * Conduct intrusion tests (penetration tests) on web applications, APIs, and infrastructure. * Simulate cyberattacks to assess system resilience. * Identify, exploit, and validate vulnerabilities based on recognized best practices. * Prepare technical and executive reports containing evidence, impact assessment, and recommendations. * Support technical teams in remediating identified vulnerabilities. * Automate security testing using tools and scripts. * Contribute to continuous improvement of offensive security controls. * Monitor trends, emerging threats, and cybersecurity frameworks. **Requirements and Qualifications** ### **Education** * Bachelor’s degree in Information Technology, Information Security, Engineering, or related fields. ### **Experience** * Proven experience of **2 to 3 years** in penetration testing and offensive security. **Additional Information** * Solid knowledge of **OWASP Top 10, CWE/SANS**. * Proficiency in methodologies such as **PTES, OSSTMM, or NIST**. * Experience with penetration testing tools including: * Burp Suite * OWASP ZAP * Nmap * Nikto * Metasploit * Strong foundation in **HTTP/HTTPS** protocols. * RESTful API security. * Threat modeling. * Ability to write clear technical and executive reports. * Technical English for reading and interpreting documentation.