Penetration Tester (Offensive Security Specialist)
Job Fit Check
Base Career helps you apply smarter for this job.
Key skills for this role
About the Role
Naseej is hiring a Penetration Tester to plan and execute authorized simulated attacks against networks, applications, and infrastructure. The role requires 3-4 years of hands-on offensive security experience and relevant certifications like OSCP or CEH.
Key Skills for This Role
Responsibilities
- Plan, scope, and conduct penetration tests across web applications, networks, APIs, mobile applications, and cloud and on premise infrastructure
- Perform vulnerability assessments and validate findings to eliminate false positives
- Conduct manual exploitation beyond automated scanning to assess real world risk
- Execute social engineering and phishing simulations where authorized
- Document findings in clear, detailed reports including risk ratings, business impact, and prioritized remediation recommendations
- Present results and debrief both technical teams and non technical stakeholders
- Retest remediated vulnerabilities to confirm effective closure
- Stay current with emerging threats, attack techniques, exploits, and security tools
- Support red team exercises and collaborate with blue team / SOC where required
- Ensure all testing is conducted within agreed scope, rules of engagement, and applicable regulations
Requirements
- Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or related field
- 3–4 years of dedicated, hands on penetration testing / offensive security experience
- Strong knowledge of common vulnerabilities and frameworks (e.g., OWASP Top 10, MITRE ATT&CK)
- Proficiency with industry tools such as Burp Suite, Metasploit, Nmap, Nessus, Kali Linux
- Solid understanding of networking protocols, operating systems (Windows/Linux), and web technologies
- Scripting ability (e.g., Python, Bash, or PowerShell) for custom tooling and automation
- Strong report writing and communication skills in English and Arabic
- Relevant certifications such as OSCP or CEH, GPEN, eJPT/eCPPT, or equivalent
Full Job Posting
Company Description
- Naseej is a leading technology company committed to digital transformation in learning & knowledge management.
- For almost 36 years, Naseej has been a market leader in E Learning, Edu Tech & Digital transformation in the MENA region.
Job Summary
- The Penetration Tester (Offensive Security Specialist) is responsible for planning and executing authorized simulated attacks against networks, applications, and infrastructure to identify security weaknesses.
- This role requires strong hands on offensive security expertise and the ability to translate technical findings into clear, actionable remediation guidance.
Key Responsibilities
- Plan, scope, and conduct penetration tests across web applications, networks, APIs, mobile applications, and cloud and on premise infrastructure.
- Perform vulnerability assessments and validate findings to eliminate false positives.
- Conduct manual exploitation beyond automated scanning to assess real world risk.
- Execute social engineering and phishing simulations where authorized.
- Document findings in clear, detailed reports including risk ratings, business impact, and prioritized remediation recommendations.
- Present results and debrief both technical teams and non technical stakeholders.
- Retest remediated vulnerabilities to confirm effective closure.
- Stay current with emerging threats, attack techniques, exploits, and security tools.
- Support red team exercises and collaborate with blue team / SOC where required.
- Ensure all testing is conducted within agreed scope, rules of engagement, and applicable regulations.
Requirements
- Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or a related field.
- 3–4 years of dedicated, hands on penetration testing / offensive security experience.
- Strong knowledge of common vulnerabilities and frameworks (e.g., OWASP Top 10, MITRE ATT&CK).
- Proficiency with industry tools such as Burp Suite, Metasploit, Nmap, Nessus, Kali Linux, and similar.
- Solid understanding of networking protocols, operating systems (Windows/Linux), and web technologies.
- Scripting ability (e.g., Python, Bash, or PowerShell) for custom tooling and automation.
- Strong report writing and communication skills in English and Arabic.
- Relevant certifications such as OSCP or CEH, GPEN, eJPT/eCPPT, or equivalent.
Key Competencies
- Strong analytical and problem solving mindset.
- Attention to detail and a methodical approach to testing.
- Ability to work independently and manage testing engagements end to end.
- Awareness of Saudi regulatory and compliance frameworks (e.g., NCA controls) is an advantage.
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career
More from this employer
More jobs at Naseej
Application Support (Tamheer)
Riyadh, KSA
Assist in providing first-level technical support for applications, manage incidents, troubleshoot issues, and document solutions while learning ITIL processes.
Application Support (Tamheer)
Riyadh, KSA
Naseej is seeking an Application Support Trainee to assist the Application Support team in providing first-level technical and functional support for business applications. The trainee will learn incident management, tro
Application Support (Tamheer)
الرياض, KSA
Naseej is seeking an Application Support Trainee to join their IT support team in Riyadh. The trainee will learn incident management, troubleshooting, and ITIL processes while providing first-level support for business a
Sales Account Manager
Riyadh, KSA
Naseej is seeking an experienced Sales Account Manager for its subsidiary Sprintive in Riyadh. The role requires 4+ years of technology sales experience, strong connections in the governmental sector, and a track record
Full Stack Developer
Riyadh, KSA
Naseej is seeking a Mid-level Full Stack Developer with 3 years of experience in Java, Spring Boot, and databases. The role involves designing and maintaining scalable backend systems, developing RESTful APIs and microse
Full Stack Developer
الرياض, KSA
Naseej is looking for an experienced Mid-level Software Developer with 3 years of hands-on experience in Java, Spring Boot, databases, and optionally Camunda and JavaScript frameworks. The role involves designing, develo
Penetration Tester (Offensive Security Specialist)
Saudi Arabia, KSA
Company Description: Naseej is a leading technology company committed to harnessing the power of digital transformation in learning & knowledge management by enabling our custom...
Governance, Risk & Compliance Specialist
, KSA
Naseej is seeking a Governance, Risk & Compliance Specialist to manage cybersecurity risks for a Saudi Ministry of Commerce project. The role involves conducting risk assessments, maintaining risk registers, and ensuring
Application Support (Tamheer)
Riyadh, KSA
Application Support (Tamheer)
Riyadh, KSA
Application Support (Tamheer)
الرياض, KSA
Sales Account Manager
Riyadh, KSA
Full Stack Developer
Riyadh, KSA
Full Stack Developer
الرياض, KSA
Penetration Tester (Offensive Security Specialist)
Saudi Arabia, KSA
Governance, Risk & Compliance Specialist
, KSA
