Penetration Tester
Remote · Singapore
Job Summary
Penetration Tester responsible for assessing security posture for APAC clients, performing external/internal vulnerability assessments and penetration testing, and conducting social engineering phishing campaigns. Requires Bachelor's degree (or equivalent) and 3-5 years in penetration testing, with knowledge of network/web vulnerabilities, OSINT, AD, scripting (bash/Powershell/Python), and OSCP or equivalent certification. Opportunity to grow across international teams and pursue professional certifications funded by the company.
Required Qualifications
- Bachelor’s Degree in Computer Science, Cybersecurity or related field (or equivalent work experience)
- 3 - 5 years of experience in Penetration Testing
- Knowledge on network protocols
- Knowledge of common network attacks and vulnerabilities
- Knowledge of common web vulnerabilities and exploitation (with focus on remote code execution)
- Knowledge and experience in working with OSINT skills
- Knowledge of Active Directory (AD) structure and security principles
- Familiar with common Active Directory (AD) privilege escalation methods
- Proficient in scripting in one of the following languages: bash, Powershell, Python
- Certification in OSCP or any relevant practical certification
- Experience in bug bounty programs is a plus
- Active participation in Capture The Flag (CTF) is a plus
- Previous discoveries of Common Vulnerabilities and Exposures (CVE) identifiers
- Basic knowledge on Microsoft Azure cloud platform
- Basic knowledge on binary exploitation, reverse engineering
- Basic knowledge on Anti-Virus and EDR evasion
- Basic knowledge on contemporary spear phishing techniques
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.