Staff Security Engineer (Penetration Tester)
On-site · Seoul, Seoul, South Korea
Job Summary
Seoul-based Red Team member for penetration testing across Web, Mobile, API, and Network, reporting security issues with remediation guidance. Activities include threat actor simulation (Red Team campaigns) and providing actionable countermeasures. Ideal candidates have 5+ years in Offensive Security, strong Web/Mobile/API security test experience, proficiency with Burp Suite, Metasploit, Kali Linux, and Nmap, solid Linux/Networking knowledge, and programming ability (Python or Java) for automation. Preferred: e-commerce experience, AWS/cloud familiarity, MITRE ATT&CK/Cyber Kill Chain understanding, computer science degree, and professional security certifications. Korean and English communication skills are desirable.
Required Qualifications
- 5+ years of technical work experience in Offensive Security
- Experience conducting security testing across Web, Mobile, API, and Network
- Proficient with major penetration testing tools (e.g., Burp Suite, Metasploit, Kali Linux, Nmap)
- Understanding of operating system security (Linux) and networks (TCP/IP)
- Ability to use Linux and command-line tools
- Programming skills in at least one language (Python or Java) for test automation/auxiliary tooling
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.