Offensive Security Engineer

We are hiring a Cybersecurity Engineer. This role is ideal for someone with hands-on technical skills who is looking to grow in offensive security while gaining exposure to client-facing engagements.
Key Responsibilities:

• Perform penetration testing on web applications, APIs, and network environments
• Conduct vulnerability assessments using automated tools and validate findings manually
• Support red team or adversary simulation exercises as part of a team
• Perform basic threat hunting activities by analyzing logs and identifying suspicious behaviour
• Assist in identifying indicators of compromise (IOCs) and potential security threats
• Support monitoring of external sources such as forums and online platforms for potential data leaks
• Document findings and prepare clear, structured technical reports
• Participate in re-testing activities to validate remediation efforts
• Stay updated with the latest security vulnerabilities, tools, and techniques
• Ensure all testing activities comply with legal, regulatory, and contractual requirements.

Required Qualifications:

• Bachelor’s degree in Cybersecurity, Information Security, IT, Computer Science, or a related field
• 3–4 years of hands-on experience in offensive security e.g. penetration testing, vulnerability assessment and exposure with threat hunting and dark web monitoring.
• Strong understanding of web security, network security, and application security concepts
• Hands-on experience with tools such as Burp Suite, Metasploit, Nmap, Nessus, and Wireshark
• Hands-on experience with OWASP Top 10, MITRE ATT&CK, and CVSS scoring
• Strong understanding of threat intelligence and OSINT techniques
• Strong analytical and investigative mindset
• Excellent client communication and presentation skills
• Strong documentation and reporting capabilities
• Ability to work independently with guidance from senior team members

Preferred Certifications

• CEH (Certified Ethical Hacker)
• OSCP (Offensive Security Certified Professional) or working towards it
• CRTP

Nice to Have

• knowledge of cloud platforms (AWS, Azure, GCP)
• Scripting skills (Python, Bash, or PowerShell)
• Exposure to SIEM or security monitoring tools

Pay: From Rs120,000.00 per month

Work Location: In person