Cyber Security Officer

We are seeking a skilled Security Consultant (Offensive Security) with 5–7 years of experience to support and deliver client-facing security assessment services. This role will work closely with the Lead Penetration Tester/CISO to execute penetration tests, vulnerability assessments, and threat hunting activities, while also contributing to external threat intelligence efforts such as dark web and online community monitoring.

Key Responsibilities:

• Support the Lead Penetration Tester in planning, scoping, and executing client engagements.
• Participate in defining testing strategies, methodologies, and rules of engagement.
• Act as a secondary point of contact for clients during assessments.
• Perform penetration testing across web applications, networks, APIs, and cloud environments.
• Conduct vulnerability assessments and validate findings through manual testing.
• Execute portions of red team or adversary simulation exercises under guidance.
• Perform proactive threat hunting to identify indicators of compromise (IOCs) and suspicious activities.
• Analyze logs, endpoint data, and network traffic to detect potential threats.
• Support development of threat hunting hypotheses and detection use cases.
• Conduct monitoring and targeted searches across dark web sources, forums, and platforms such as Discord.
• Identify potential data leaks, credential exposure, and threat actor activity relevant to clients.
• Correlate external intelligence with internal findings to enhance overall risk visibility.
• Prepare detailed technical reports with clear findings and remediation recommendations.
• Support the Lead in presenting results to client stakeholders.
• Translate technical vulnerabilities into business risk where required.
• Perform re-testing to validate remediation efforts.
• Contribute to internal playbooks, tools, and methodologies.
• Stay current with emerging threats, tools, and offensive security techniques.

Required Qualifications:

• Bachelor’s degree in Cybersecurity, Information Security, IT, or equivalent experience.
• 5–7 years of hands-on experience in penetration testing, vulnerability assessment, or offensive security.
• Experience working in a client-facing or consulting environment.
• Strong understanding of network security, application security, and system architecture.
• Hands-on experience with tools such as Burp Suite, Metasploit, Nmap, Nessus, Wireshark, and similar.
• Familiarity with frameworks such as OWASP Top 10, MITRE ATT&CK, and CVSS.
• Experience with OSINT, threat intelligence, or dark web monitoring is a plus.

Preferred Certifications:

• OSCP (or working toward it)
• CEH, GPEN, or GWAPT
• Other relevant offensive security certifications

Key Skills:

• Strong technical and analytical skills
• Ability to work independently while collaborating with senior team members
• Good client communication and reporting skills
• Attention to detail and risk-based thinking

Nice to Have:

• Experience with cloud security (AWS, Azure, GCP)
• Scripting skills (Python, PowerShell, Bash)
• Exposure to SIEM/EDR platforms

Experience with red teaming or adversary simulation

Pay: From Rs250,000.00 per month

Work Location: In person