VAPT / Penetration Tester (Arabic Speaker) – Onsite (UAE)
Job Fit Check
Base Career helps you apply smarter for this job.
Key skills for this role
About the Role
Metra is seeking an experienced VAPT / Penetration Tester for a client in Abu Dhabi. The role involves conducting security assessments across web, mobile, APIs, and networks, and executing red team exercises.
Key Skills for This Role
Responsibilities
- Conduct vulnerability assessments and penetration testing for web applications, mobile applications, APIs, internal and external infrastructure.
- Execute red team exercises to evaluate organizational security posture.
- Perform manual and automated security testing using industry standard tools and methodologies.
- Identify security vulnerabilities, validate findings, assess business impact, and recommend remediation.
- Prepare detailed technical reports and executive summaries with actionable recommendations.
- Re test remediated vulnerabilities to validate successful mitigation.
- Collaborate with developers, infrastructure, and security teams to improve security posture.
- Stay current with emerging cyber threats, attack techniques, vulnerabilities, and security tools.
- Participate in security assessments for new applications, systems, and technologies.
- Contribute to improving penetration testing methodologies, playbooks, and security best practices.
Requirements
- Bachelor's degree in Computer Science, Information Security, Cybersecurity, or a related field.
- 4–10 years of hands on experience in Vulnerability Assessment and Penetration Testing (VAPT).
- Fluent in Arabic and English (written and spoken).
- Candidates currently based in the UAE are strongly preferred.
- Strong analytical and problem solving skills.
- Excellent report writing and presentation abilities.
- Ability to communicate technical findings to both technical and non technical stakeholders.
Full Job Posting
Job Summary
- We are seeking an experienced Vulnerability Assessment and Penetration Testing (VAPT) / Penetration Tester to join our client's cybersecurity team in the UAE.
- The successful candidate will be responsible for identifying, assessing, and validating security vulnerabilities across web applications, mobile applications, networks, APIs, and other technology platforms through authorized penetration testing and red team engagements.
- The ideal candidate has strong hands on offensive security experience, is fluent in Arabic, and has a proven background in conducting security assessments across multiple technology domains.
Key Responsibilities
- Conduct vulnerability assessments and penetration testing for web applications, mobile applications, APIs, internal and external infrastructure.
- Execute red team exercises to evaluate organizational security posture.
- Perform manual and automated security testing using industry standard tools and methodologies.
- Identify security vulnerabilities, validate findings, assess business impact, and recommend remediation.
- Prepare detailed technical reports and executive summaries with actionable recommendations.
- Re test remediated vulnerabilities to validate successful mitigation.
- Collaborate with developers, infrastructure, and security teams to improve security posture.
- Stay current with emerging cyber threats, attack techniques, vulnerabilities, and security tools.
- Participate in security assessments for new applications, systems, and technologies.
- Contribute to improving penetration testing methodologies, playbooks, and security best practices.
Required Qualifications
- Bachelor's degree in Computer Science, Information Security, Cybersecurity, or a related field.
- 4–10 years of hands on experience in Vulnerability Assessment and Penetration Testing (VAPT).
- Fluent in Arabic and English (written and spoken).
- Candidates currently based in the UAE are strongly preferred.
Required Technical Skills
- Web Application Penetration Testing
- Mobile Application Penetration Testing (Android & iOS)
- API Security Testing
- Network Penetration Testing
- Vulnerability Assessment
- Red Team Operations
- OWASP Top 10
- OWASP Mobile Top 10
- MITRE ATT&CK Framework
- Common attack vectors and exploitation techniques
- Secure authentication and authorization mechanisms
Tools
- Burp Suite
- Nessus
- Nmap
- Metasploit
- Kali Linux
- Wireshark
- OWASP ZAP
- SQLMap
- Nikto
- Hydra
- MobSF
- Frida
Additional Experience (Highly Preferred)
- AI Security Assessments
- Blockchain Security Testing
- Cloud Security (AWS, Azure, GCP)
- Active Directory Security
- Wireless Security
- Container & Kubernetes Security
- DevSecOps
- Source Code Security Review
Preferred Certifications
- OSCP
- OSWE
- OSEP
- CEH
- eCPPT
- GPEN
- GWAPT
- CRTO
- PNPT
Soft Skills
- Strong analytical and problem solving skills.
- Excellent report writing and presentation abilities.
- Ability to communicate technical findings to both technical and non technical stakeholders.
- Self motivated with strong attention to detail.
- Ability to work independently as well as within a team.
- Strong ethical mindset and commitment to responsible disclosure.
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career
More from this employer
More jobs at Metra
General Counsel
Dubai, UAE
Metra, a regulated virtual asset broker-dealer, seeks a General Counsel to advise on legal strategy, digital assets, blockchain operations, and regulatory compliance. The role involves managing corporate governance acros
Associate Project Manager
Dubai, UAE
Metra, a regulated virtual asset broker-dealer, is seeking an Associate Project Manager to lead and drive key business initiatives. The ideal candidate has 5+ years of project or product management experience in internet