{bc}
linkedin

Information Security Analyst l (PenTester)

Tabby | تابي
Riyadh, KSA
Full Time
Entry
2 weeks ago
Penetration TestingVulnerability AssessmentOWASP Top 10MITRE ATT&CKNmapBurp Suite
Free

Job Fit Check

Base Career helps you apply smarter for this job.

?%
Ready to Scan

Key skills for this role

Penetration TestingVulnerability AssessmentOWASP Top 10
Smart Apply

Full Job Posting

Description

  • Tabby creates financial freedom in the way people shop, earn and save by reshaping their relationship with money.
  • Over 15 million users choose Tabby to stay in control of their spending and make the most out of their money.
  • The company’s flagship offering allows shoppers to split their payments online and in store with no interest or fees.
  • Over 40,000 global brands and small businesses, including Amazon, Noon, IKEA, and SHEIN use Tabby.
  • Tabby generates over $10 billion in annual transaction volume for its partner brands.
  • Tabby launched in 2019 and has since raised +$1 billion in equity and debt funding, valued at $4.5 billion.
  • The Cyber Security Analyst (Offensive Security) role serves as a structured entry point into offensive security, with a strong emphasis on learning industry standard tools, methodologies, and frameworks (OWASP Top 10, MITRE ATT&CK).

Key Responsibilities

  • Technical Security Assessment Support: Assist senior engineers in conducting penetration tests across web applications, APIs, and network infrastructure.
  • Support vulnerability assessments using automated scanning tools (e.g., Nmap, vulnerability scanners) under supervision.
  • Participate in Red Team exercises as a supporting team member.
  • Help execute controlled offensive testing tasks (e.g., running scripts, setting up test environments, assisting with phishing simulations).
  • Assist in identifying, documenting, and tracking vulnerabilities throughout the assessment lifecycle.
  • Support the development and maintenance of basic scripts and testing utilities.
  • Risk Documentation & Reporting: Assist in analyzing and documenting assessment findings.
  • Support the preparation of penetration test reports by compiling findings, screenshots, and tool outputs.
  • Help track the status of identified vulnerabilities and remediation progress.
  • Assist in validating patched vulnerabilities by re testing affected systems.
  • Collaboration & Program Support: Participate in Purple Team exercises as an observer and support role.
  • Provide basic log collection and organizational support to the incident response team.

Skills, Knowledge & Expertise

  • Bachelor's degree in Information Technology, Computer Science, Software Engineering, Cybersecurity, or a related field.
  • Basic understanding of common vulnerabilities and attack concepts (OWASP Top 10, CVEs, common misconfigurations).
  • Foundational knowledge of networking protocols (TCP/IP, DNS, HTTP/S, FTP, SMB) and how they can be abused.
  • Exposure to at least one security tool in any of the following categories: port scanners (Nmap), web proxies (Burp Suite Community), or vulnerability scanners.
  • Basic proficiency in at least one scripting or programming language (Python, Bash, or PowerShell) for task automation.
  • Fundamental understanding of operating system internals for both Windows and Linux environments.
  • Awareness of the MITRE ATT&CK framework and how it maps adversary behaviors.
  • Familiarity with cloud concepts (any provider — GCP, AWS, or Azure) is an advantage.

Apply for this job in 1 click

Skip the repetitive application forms

Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.

Sarah M.James T.Maya R.

Trusted by over 500,000 job seekers on Base Career

Start Free Today

More from this employer

More jobs at Tabby | تابي