Responsible for assessing the security of an organization's IT infrastructure by identifying vulnerabilities and weaknesses. They use various tools and techniques to simulate real-world cyberattacks, helping the organization improve its security posture and protect sensitive data.

Key Responsibilities:

· Conduct penetration tests on networks, systems, applications, and devices.

· Identify vulnerabilities and recommend remediation strategies.

· Simulate social engineering attacks (e.g., phishing).

· Create detailed reports outlining test findings and solutions.

· Collaborate with security teams to improve security protocols.

· Stay updated on the latest cybersecurity trends, tools, and threats.

· Ensure compliance with relevant security standards and frameworks (e.g., ISO 27001, PCI-DSS).

Education:

· Bachelor's degree in Computer Science, Cybersecurity, or related field (or equivalent work experience).

Skills & Experience:

· Strong knowledge of networking, operating systems (Windows, Linux), and web applications.

· Proficiency with penetration testing tools (e.g., Metasploit, Burp Suite, Nmap, Wireshark).

· Experience in scripting or programming (e.g., Python, Bash, JavaScript).

· Understanding of security frameworks and standards (e.g., OWASP, NIST).

· Strong analytical and problem-solving skills.

· Excellent written and verbal communication skills for technical and non-technical audiences.

Preferred Experience:

· Hands-on experience in penetration testing or vulnerability assessment.

· Familiarity with cloud environments (AWS, Azure, Google Cloud).

· Experience in reverse engineering or malware analysis.