Penetration Tester & Vulnerability Analyst (Offensive Security)
Riyadh
Saudi Nationals only
24-month project
Overview
The Penetration Tester & Vulnerability Analyst will deliver advanced offensive security assessments across enterprise environments. The role focuses on identifying, exploiting, validating, and retesting security vulnerabilities, while supporting ongoing vulnerability management activities. The position requires producing clear, high-quality technical and executive-level reports with actionable remediation guidance.
Key Responsibilities
• Perform advanced penetration testing across web applications, internal and external networks, wireless infrastructure, and critical servers
• Execute vulnerability assessments, exploitation, validation, and retesting activities
• Support and maintain vulnerability management processes
• Identify real-world attack paths and assess business and technical risk
• Produce detailed technical reports and executive summaries with remediation recommendations
• Communicate findings clearly to both technical and non-technical stakeholders
• Ensure testing activities align with recognised offensive security standards and methodologies
Required Skills & Experience
• 3–5 years of hands-on experience in offensive security or penetration testing
• Fluent in Arabic and English, written and spoken
• Previous experience working with government, semi-government, or critical infrastructure organisations within the Kingdom of Saudi Arabia
• Strong understanding of penetration testing methodologies, tools, and reporting standards
• Proven technical expertise in web application, infrastructure, network, and wireless security testing
• Familiarity with OWASP Top 10, MITRE ATT&CK, CVSS scoring, and PTES methodology
• Strong ability to document technical findings and communicate results effectively in both Arabic and English
