June 3, 2026 
UAE 
Full-time Job Description…
We are seeking a highly skilled Penetration Tester to join our cybersecurity team on a 12-month extendable contract. The successful candidate will be responsible for conducting advanced security assessments across web applications, mobile applications, networks, and infrastructure while identifying vulnerabilities and providing actionable remediation recommendations.
Key Responsibilities:
• Perform Web Application Vulnerability Assessment and Penetration Testing (VAPT).
• Conduct Mobile Application Security Assessments for both iOS and Android platforms.
• Execute Network Penetration Testing and Infrastructure Security Assessments.
• Perform Threat Modeling exercises and security risk assessments.
• Conduct Secure Code Reviews and Secure Architecture Reviews.
• Research, validate, and exploit security vulnerabilities in a controlled environment.
• Perform Reverse Engineering of software, mobile applications, and hardware components.
• Develop custom penetration testing tools, automation scripts, and security utilities.
• Produce detailed technical and executive security assessment reports.
• Collaborate with development and infrastructure teams to remediate identified security risks.
• Stay current with emerging threats, attack techniques, and vulnerability research.
Required Skills & Qualifications:
• Proven experience in penetration testing, offensive security, or application security roles.
• Strong expertise in:
- Web Application VAPT
- Mobile Application VAPT (iOS & Android)
- Network VAPT
- Threat Modeling
- Secure Code Review
- Secure Architecture Review
- Vulnerability Research & Exploitation
- Hardware Reverse Engineering
- Development of VAPT Tools & Software
Technical Skills:
Application Security:
• Web Application Security
• Mobile Application Security
Reverse Engineering:
• Binary Analysis
• Malware Analysis
• Exploit Development
Operating Systems:
• Linux (Bash)
• Windows
• AWS Cloud Environment
Programming Languages:
• Python
• SQL
• PHP
• .NET
• Java
• JavaScript
• Assembly (ASM)
Security Tools:
• Burp Suite Professional
• Frida
• Objection
• Hopper Disassembler
• Wireshark
• Metasploit Framework
• Ghidra
• IDA Pro
• Apktool
• Nmap
• Docker
• GitHub
Security Standards & Frameworks:
• OWASP
• NVD/NVDB
• CVE
• CWE
• CVSS
Mobile Security Expertise:
iOS:
• Reverse Engineering
• Jailbreak Detection Bypass
• SSL Certificate Pinning Bypass
Android:
• Reverse Engineering
• Root Detection Bypass
• SSL Certificate Pinning Bypass
Preferred Certifications:
• OSCP (Offensive Security Certified Professional)
• OSWE (Offensive Security Web Expert)
• OSEP (Offensive Security Experienced Penetration Tester)
• eCPPT
• CEH Practical
• GIAC GPEN
Contract Details:
• Contract Duration: 12 Months (Extendable)
• Salary: TBD
• Nationality: Any