Penetration Tester

ABOUT GROUP-IB: Founded in 2003 and headquartered in Singapore, Group-IB is a leading creator of cybersecuritytechnologies to investigate, prevent, and fight digital crime. Combating cybercrime is in the company’s DNA, shaping its technological capabilities to defend businesses, and citizens, and support law enforcement operations.Group-IB’s Digital Crime Resistance Centers (DCRCs) are located in the Middle East, Europe, Central Asia, and Asia-Pacific to help critically analyze and promptly mitigate regional and country-specific threats. These mission-critical units help Group-IB strengthen its contribution to global cybercrime prevention and continually expand its threat-hunting capabilities. Each of us can help make the world a safer place. Join us! ABOUT THE ROLE:Think like an adversary — identify and exploit complex, real-world attack paths beyond automated tooling.Be ready to do deep manual testing, multi-stage exploitation, and custom proof-of-concept development across diverse technologies and environments (not just run scanners). YOUR MISSIONConduct external and internal penetration testing and vulnerability assessment activities Conduct social engineering campaignsAssess wireless security Participate in red teaming exercisesInternal research and developmentWHAT SUCCESS LOOKS LIKE:At least 2 years of experience in Offensive SecurityStrong technical background in computer networks, operating systems and programmingStrong scripting skills in one or more languages (Python, Go, Powershell, Bash, Ruby, Perl, Lua)Practical knowledge in web vulnerabilities and complex exploitation.Practical knowledge in network services vulnerabilities and exploitation.Experience getting initial access (both through technical means and social engineering campaigns) Experience operating C2 frameworks (open-source and commercial)Nice to have: Evasion experience (systems, applications and network exploitation in heavily monitored and protected environments)Malware development experience (writing shellcode loaders, obfuscating and customizing commonly used pentest and red teaming tools)Cloud platforms familiarity: Azure, AWS, GCPBlue team detection and response procedures and capabilities knowledge or experience working in BTProgramming skills in one or more low-level languages (Asm, C/C++ etc)Reverse engineering and vulnerability research skillsSpecialized knowledge such as OT, SS7 and IoT networks, embedded systems and similar sub categories of offensive securityCertifications such as OSCP, OSEP, CRTO, OSWE, OSED and similarPublic researches, tools, conference talksDiscovered vulnerabilities with high/critical impact or in commonly used productsOUR WORK ENVIRONMENT & CULTURE:At Group-IB, we believe that employee happiness is fundamental to success. We foster a supportive, inclusive, and dynamic workplace where every team member is empowered to grow. Whether you’re aiming to deepen your expertise, step into leadership, explore new departments, or take your career abroad, we provide diverse opportunities for professional development.Our team is made up of specialists from around the world who bring deep international expertise and thrive on solving complex challenges. You’ll be working with cutting-edge technologies recognized globally by Gartner, IDC, and Forrester, and contributing to projects that span across 60 countries alongside 450+ partners and 500+ clients.We take pride in our multicultural, values-driven culture—where mutual respect, collaboration, and shared goals unite us across borders. And with Group-IB’s continued global growth and financial stability, your career trajectory here can accelerate faster than in most traditional environments.WHAT DO WE OFFER: Flexible Work Schedule We don’t believe in fixed hours—what matters is impact, not time spent. You have the freedom to design your own workday in a way that drives results and balance.Comprehensive Health Coverage Your well-being comes first. We offer health insurance to support you when it matters most.Certifications & Continuous Learning Our team holds over 1,000 globally recognized certifications, including CEH, CISSP, OSCP, and more. Through our incentive program, we cover the cost of professional development—because your growth fuels our innovation.Meaningful Challenges & Growth Paths From soft skills development to advanced technical training, a wide range of internal programs help you expand your skill set—and earn recognition and rewards along the way.Entrepreneurial spirit is encouraged We value initiative. Whether it’s launching a tech blog, organizing events, building communities, or starting a sports team—Group-IB is a place where bold ideas are supported and celebrated.