Z

Penetration Tester

Zone

Riyadh, Riyadh Province, Saudi Arabia · Full Time

Be the first to apply

Experience
Any
Salary
Openings
1
Posted
4 hours ago
Work mode
In office
Education
Bachelor’s degree
Eligibility
Saudi nationals with a relevant bachelor’s degree and the required cybersecurity/penetration testing knowledge and hands-on tool experience can apply.
Resume
Required to apply

Where you'll work

Job description

Role overview

Zone is growing its cybersecurity team in Saudi Arabia and is looking for a Penetration Tester to support security testing efforts across applications, networks, systems, and infrastructure. The role focuses on authorized offensive security work, including simulated attacks, vulnerability discovery, risk analysis, and coordination with internal teams to reduce exposure.

What you will do

  • Run penetration tests on web applications, networks, systems, and infrastructure to uncover security gaps.
  • Review and confirm weaknesses, then suggest practical steps to fix them.
  • Carry out vulnerability assessments using recognized tools and standard testing methods.
  • Model realistic attack paths to measure how resilient systems are against threats.
  • Document findings in detailed technical reports, including severity and remediation guidance.
  • Work with security and IT teams to help address vulnerabilities and strengthen controls.
  • Keep current with new threats, exploit techniques, CVEs, and industry security practices.
  • Ensure all testing is ethical and aligned with company rules and security standards.

Required background and skills

Candidates should hold a bachelor’s degree in computer science, computer engineering, cybersecurity, information systems, network engineering, or a similar discipline. Saudi nationality is required. The ideal applicant understands cybersecurity fundamentals and penetration testing techniques, is familiar with common application and system risks such as OWASP Top 10 and CVEs, and has a solid grasp of networking, protocols, and Windows and Linux environments. Practical use of tools such as Metasploit, Burp Suite, Nmap, and Wireshark is expected. Strong analytical thinking, problem-solving ability, professional reporting, integrity, clear communication, and teamwork are also important.

Preferred certifications

eJPT is preferred. Other offensive security or penetration testing certifications, such as OSCP, PNPT, or CEH, are considered an advantage.

Additional information

This is a full-time onsite role based in Riyadh, Saudi Arabia. Applicants were invited to share their CV by email. No salary, stipend, number of openings, or start date was specified.

Leave it if you'd like a reply — we won't use it for anything else.

Click to browse, drag & drop, or paste a screenshot

PNG, JPG, GIF, MP4, WebM, MOV · Max 20MB each · Up to 5 files

🤖
Online · instant AI help