Role & seniority: Penetration Testing Engineer (mid-senior level; 4+ years offensive security; enterprise/government context)

Stack/tools: automated security validation frameworks; CI/CD pipelines; DevSecOps practices; scripting (Python, PowerShell, Bash); penetration testing tools; vulnerability assessment tools; MITRE ATT&CK; network/OS/security architecture knowledge; threat intelligence integration

Top 3 responsibilities

Design and implement automated security validation frameworks and pipelines
Execute continuous security testing across diverse IT environments; perform manual testing for complex scenarios
Analyze validation results, identify gaps in defenses, develop methodologies, and produce reports with strategic security recommendations; collaborate with security teams; document procedures

Must-have skills

Degree in Cybersecurity/Info Security/CS or equivalent experience; relevant certifications (OSCP, SANS, cloud security)
4+ years in offensive security or related field (enterprise/government preferred)
Proficiency with penetration testing tools/methodologies; full attack lifecycle understanding
Automation/scripting (Python, PowerShell, Bash); CI/CD and DevSecOps familiarity
Knowledge of networks, operating systems, security architectures; MITRE ATT&CK familiarity
Experience with vulnerability assessment and security scanning tools

Nice-to-haves

Prior government or enterprise-security program experience
Cl

Full Description

Assurity Trusted Solutions (ATS) is a wholly owned subsidiary of the Government Technology Agency (GovTech). As a Trusted Partner over the last decade, ATS offers a comprehensive suite of products and services ranging from infrastructure and operational services, authentication services, governance and assurance services as well as managed processes. In a dynamic digital and cyber landscape, where trust & collaboration are key, ATS continues to drive mutually beneficial business outcomes through collaboration with GovTech, government agencies and commercial partners to mitigate cyber risks and bolster security postures. We are looking for a Penetration Testing Engineer for a continuous security validation project. You will have the unique opportunity to work on this project with like-minded cybersecurity professionals.

Job Summary

Design and implement automated security validation frameworks and pipelines.
Execute continuous security testing across diverse IT environments.
Perform manual penetration testing for complex scenarios and edge cases.
Analyse security validation results and identify gaps in defensive controls.
Develop and maintain testing methodologies based on current threat intelligence.
Create comprehensive reports and strategic recommendations for security improvements.
Collaborate with security teams to enhance detection and prevention capabilities.
Document testing procedures and maintain knowledge base of security validation practices.

To succeed in this role, you will ideally have

Degree in Cybersecurity, Information Security, Computer Science or a related field, including equivalent experience and relevant cybersecurity certifications such as OSCP, SANS or cloud security.
A minimum of 4 years’ experience in offensive security or a related field preferably within an enterprise or government environment.
Proficiency in penetration testing tools and methodologies.
Deep understanding of the complete attack lifecycle from reconnaissance to post-exploitation.
Experience with automation and scripting (Python, PowerShell, Bash).
Knowledge of CI/CD pipelines and DevSecOps practices.
Understanding of network protocols, operating systems, and security architectures.
Familiarity with threat intelligence frameworks (MITRE ATT&CK).
Experience with vulnerability assessment and security scanning tools.
Join us and discover a meaningful and exciting career with Assurity Trusted Solutions!
The remuneration package will commensurate with your qualifications and experience. Interested applicants, please click "Apply Now".

Penetration Testing Engineer (Continuous Security Validation)