Overview
SoftConstruct is looking for a Infrastructure Penetration Tester.
Responsibilities:
- Conduct internal and external infrastructure penetration tests, including network, server, firewall, and VPN security assessments
- Identify, exploit, and document security vulnerabilities in on-premises and cloud environments (e.g., AWS, Azure, GCP)
- Simulate real-world cyberattacks to evaluate system resilience and detect potential exposure points
- Create and deliver detailed penetration testing reports, including risk ratings, technical details, and remediation recommendations
- Collaborate with IT, DevOps, and Security Engineering teams to validate findings, assist in mitigation strategies, and verify remediation efforts
- Continuously monitor and test the organization’s infrastructure to stay ahead of evolving threats and vulnerabilities
- Develop and maintain testing tools, scripts, and methodologies following industry best practices (MITRE ATT&CK, OWASP, NIST)
- Assist in red team/blue team simulations and contribute to ongoing security hardening projects
Required Qualifications:
- 3–5 years of experience in penetration testing, vulnerability assessment, or ethical hacking roles
- Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related technical field
- In-depth knowledge of penetration testing techniques, tools (e.g., Nmap, Burp Suite, Metasploit, Nessus, Cobalt Strike), and security assessment methodologies
- Strong understanding of operating systems (Linux, Windows), network protocols, firewalls, IDS/IPS, and VPN configurations
- Hands-on experience with both manual and automated testing approaches
- Familiarity with cloud infrastructure penetration testing techniques and cloud security assessment tools
- Understanding of MITRE ATT&CK framework and common CVE exploitation methods
- Strong communication and report writing skills for both technical and non-technical audiences
Please note: Our intelligent job search engine discovered this job and republished it for your convenience. Please be aware that the job information may be incorrect or incomplete. The job announcement remains the property of its original publisher. To view the original job and its full details, please visit the job's URL on the owner’s page.
Please clearly mention that you have heard of this job opportunity on https://ijob.am.