FIND_THE_RIGHTJOB.

Information Security Engineer

Faisalabad, Pakistan

We are seeking an experienced Information Security Consultant with strong offensive and defensive cybersecurity skills. The ideal candidate has a hacker’s mindset — able to think like an attacker to identify vulnerabilities, but also experienced in building strategies, defenses, and best practices to secure organizations against threats.

Key Responsibilities

Conduct security assessments and penetration tests across networks, web apps, mobile apps, and cloud environments.
Identify and exploit vulnerabilities, then provide actionable remediation guidance.
Advise clients on risk management, security policies, and compliance (ISO 27001, NIST, GDPR, etc.).
Perform threat modeling and security architecture reviews.
Develop and deliver incident response plans and conduct post-breach investigations.
Provide security awareness training and help organizations build a strong security culture.
Stay current with emerging threats, vulnerabilities, exploits, and mitigation techniques.

Required Skills & Knowledge

Strong understanding of operating systems (Linux, Windows, macOS, mobile platforms).
Deep knowledge of networking protocols (TCP/IP, DNS, HTTP/S, VPNs, firewalls).
Hands-on experience with penetration testing tools (Burp Suite, Metasploit, Nmap, Wireshark, etc.).
Proficiency in scripting/programming: Python, Bash, PowerShell; familiarity with C/C++ and JavaScript is a plus.
Knowledge of web app security (OWASP Top 10) and common vulnerabilities (SQLi, XSS, CSRF, privilege escalation).
Experience with cloud platforms (AWS, Azure, GCP) and their security models.
Familiarity with cryptography, authentication, and identity management.
Strong communication skills — ability to present findings to both technical and non-technical audiences.

Preferred Certifications (not mandatory)