Offensive Security Engineer

We are hiring a Cybersecurity Engineer. This role is ideal for someone with hands-on technical skills who is looking to grow in offensive security while gaining exposure to client-facing engagements.
Key Responsibilities:

• Perform penetration testing on web applications, APIs, and network environments
• Conduct vulnerability assessments using automated tools and validate findings manually
• Support red team or adversary simulation exercises as part of a team
• Perform basic threat hunting activities by analyzing logs and identifying suspicious behaviour
• Assist in identifying indicators of compromise (IOCs) and potential security threats
• Support monitoring of external sources such as forums and online platforms for potential data leaks
• Document findings and prepare clear, structured technical reports
• Participate in re-testing activities to validate remediation efforts
• Stay updated with the latest security vulnerabilities, tools, and techniques
• Ensure all testing activities comply with legal, regulatory, and contractual requirements.

Required Qualifications:

• Bachelor’s degree in Cybersecurity, Information Security, IT, Computer Science, or a related field
• 3–4 years of hands-on experience in offensive security e.g. penetration testing, vulnerability assessment and exposure with threat hunting and dark web monitoring.
• Strong understanding of web security, network security, and application security concepts
• Hands-on experience with tools such as Burp Suite, Metasploit, Nmap, Nessus, and Wireshark
• Hands-on experience with OWASP Top 10, MITRE ATT&CK, and CVSS scoring
• Strong understanding of threat intelligence and OSINT techniques
• Strong analytical and investigative mindset
• Excellent client communication and presentation skills
• Strong documentation and reporting capabilities
• Ability to work independently with guidance from senior team members
• Candidates graduated from Lahore University of Management Sciences (LUMS), National University of Computer and Emerging Sciences (FAST), and National University of Sciences and Technology (NUST) will be considered for this role.

Preferred Certifications

• CEH (Certified Ethical Hacker)
• OSCP (Offensive Security Certified Professional) or working towards it
• CRTP

Nice to Have

• knowledge of cloud platforms (AWS, Azure, GCP)
• Scripting skills (Python, Bash, or PowerShell)
• Exposure to SIEM or security monitoring tools

Pay: From Rs120,000.00 per month

Work Location: In person