Principal Consultant- VAPT (Qatar Based Role)

The Principal Consultant will lead and deliver advanced security assessment services across multiple domains, including Internal Vulnerability Assessment and Penetration Testing (VAPT), Active Directory Assessments (on-premises and Azure), OT/ICS Security.

Key responsibilities:

• Lead and enhance VAPT methodologies, ensuring testing processes remain current, efficient, and repeatable.
• Conduct advanced penetration tests, including bypassing controls (NAC, firewalls, IDS/IPS, SIEM, EDR, email filters).
• Develop/customize scripts, tools, and automation to strengthen assessment capabilities.
• Deliver tactical assessments of internal/external networks, threat analysis, and security architectures, including basic OT/ICS environments.
• Oversee quality of client deliverables and mentor consultants to ensure consistent excellence.

Experience and Qualifications

• 5–8 years of hands-on VAPT consulting experience.
• Relevant certifications such as OSCP, OSCE, OSWE, GPEN, GCIH, GWAPT, GXPN, CREST or equivalent.
• Proven experience in internal VAPT and red team exercises .
• Expertise in Active Directory (on-prem & Azure) assessments, including advanced attack simulations (e.g., Golden SAML, constrained delegation, etc.).
• Strong understanding of cloud platforms (Azure, AWS) and their components (EKS, AKS, KMS, RDS, IAM, ELB, CloudFront, security groups, etc.).
• Exposure to OT/ICS security concepts and awareness of common risks in industrial environments.
• Excellent client engagement, communication, and presentation skills