Employment Type
Full time
Role Overview
We are seeking a Senior Penetration Tester holding a valid CREST certification to strengthen our offensive security capabilities in Abu Dhabi. The role focuses on delivering high-quality penetration testing services for critical organizations across government, finance, energy, and regulated industries.
The successful candidate will operate as a trusted technical expert, capable of executing complex assessments, translating technical findings into business risk, and contributing to continuous improvement of security posture for high-stakes environments.
Key ResponsibilitiesPenetration Testing Delivery
• Perform penetration tests across multiple domains including external, internal, web applications, mobile applications, cloud environments, and APIs
• Execute red team style attack simulations aligned with real threat actor techniques
• Conduct vulnerability research and exploit development where required
• Validate security controls effectiveness rather than checklist testing
Reporting and Risk Communication
• Produce clear, structured, and actionable penetration test reports
• Translate technical findings into business and operational risk language
• Provide remediation guidance with prioritization based on impact and exploitability
• Participate in executive and technical debriefings with clients
Standards, Compliance, and Quality
• Deliver testing in line with CREST standards and code of conduct
• Align testing methodology with frameworks such as OWASP, NIST, CIS, and MITRE ATT and CK
• Support regulated environments including financial services and government entities
• Contribute to internal quality assurance and methodology evolution
Collaboration and Expertise
• Work closely with blue teams, SOC analysts, and threat intelligence teams
• Support purple team exercises and tabletop simulations when required
• Mentor junior testers and contribute to skills development
• Stay current with emerging attack techniques, tools, and vulnerabilities
Required QualificationsCertifications (Mandatory)
• CREST Certification (CRT, CCT INF, CCT APP, or equivalent)
Technical Skills
• Strong hands on experience with network and application penetration testing
• Proven expertise in web application security and API testing
• Experience with Active Directory attacks and privilege escalation
• Familiarity with cloud platforms such as AWS, Azure, or GCP
• Strong scripting skills in Python, Bash, or PowerShell
• Solid understanding of modern defensive controls including EDR, SIEM, WAF, and IAM
Professional Experience
• Minimum 4 to 6 years of hands on penetration testing experience
• Experience delivering tests for enterprise or critical infrastructure environments
• Comfortable operating in client facing and high trust engagements
Soft Skills and Mindset
• Strong analytical and problem solving skills
• Clear written and verbal communication abilities
• High ethical standards and professional integrity
• Ability to operate independently and under pressure
• Consulting mindset with a focus on value and impact
What We Offer
• High exposure projects across government and critical sectors in the UAE
• Work within a senior, highly skilled cybersecurity team
• Continuous training and certification support
• Competitive compensation aligned with expertise and certifications
• Long term career growth within offensive security and advanced cyber operations
