Penetration Tester / Ethical Hacker / Security Analyst

About the Role

We are looking for a skilled and detail-oriented Penetration Tester / Ethical Hacker with strong expertise in cybersecurity, vulnerability assessments, and security auditing. The ideal candidate should be capable of identifying security weaknesses, performing controlled exploits, and providing actionable remediation recommendations to enhance the organization's security posture.

Key Responsibilities

Perform penetration testing across web applications, mobile apps, APIs, networks, cloud, and infrastructure.

Conduct vulnerability assessments, risk analysis, and security audits.

Identify, exploit, and validate real‑world security vulnerabilities using industry‑standard tools and techniques.

Prepare detailed reports, including proofs of concept, impact analysis, and remediation steps.

Work closely with development, Dev Ops, and IT teams to close vulnerabilities and improve security maturity.

Perform threat modeling, attack simulations, and red team exercises.

Monitor emerging cyber threats and propose security improvements.

Ensure compliance with relevant frameworks (ISO 27001, NIST, CIS, SOC 2, etc.).

Help implement security best practices across the organization.

Required Skills & Qualifications

Strong knowledge of penetration testing methodologies (OWASP, PTES, MITRE ATT&CK).

Proficiency with tools such as:

Burp Suite

Metasploit

Kali Linux

Nessus / Open VAS

Wireshark

Nmap

Nikto

Hydra, John the Ripper, Hashcat

Strong understanding of:

Web security

Network security

Linux & Windows environments

Scripting (Python, Bash, Power Shell)

Ability to write clear and professional audit/security reports.

Excellent problem‑solving, analytical, and communication skills.

Preferred Qualifications

Prior experience in Red Team / Blue Team operations.

Knowledge of cloud platforms (AWS, Azure, GCP).

Experience with SIEM, IDS/IPS, firewall configurations.

Certifications (plus point):

CEH (Certified Ethical Hacker)

OSCP

e JPT / e WPT

Security+

CISA / CISM

ISO 27001 Lead Auditor

Location

Lahore/Islamabad/Karachi (Remote)

Type: Part‑time

Experience: 5+ Years

Department: Information Security & Compliance

About Us

TEKHQS is a global technology solutions provider headquartered in Lake Forest, California, with a 300+ expert team in Pakistan. We specialize in ERP, AI/ML, blockchain, cloud, and staff augmentation services. Join us to drive business growth and work on cutting‑edge global IT projects with hands‑on mentorship and a clear career path.

#J-18808-Ljbffr