Editorial summary

The company is seeking a Penetration Testing Specialist responsible for conducting comprehensive security assessments across web, mobile, API, network, cloud, and infrastructure environments. The role involves performing vulnerability assessments, manual testing, secure code reviews, and simulating real-world attack scenarios to identify security weaknesses and evaluate potential impacts. Candidates should possess expertise in penetration testing, security controls, and threat simulation. The position offers a salary of 11,500.

This summary is AI-generated and may contain inaccuracies. Please refer to the full job description below.

Job description

[This job id 15190 first appeared in Job-Q.com on 18 Jun 2026]

Key Responsibilities

Penetration Testing & Security Assessments

• Conduct comprehensive penetration testing on web applications, mobile applications, APIs, networks, cloud environments, and infrastructure.
• Perform vulnerability assessments and validate security findings through manual testing.
• Execute internal and external network penetration testing engagements.
• Assess security controls, identify weaknesses, and evaluate potential business impacts.
• Simulate real-world attack scenarios, including adversary emulation and red team exercises.

Application Security

• Perform secure code reviews and application security assessments.
• Identify vulnerabilities such as:OWASP Top 10Injection attacks (SQLi, Command Injection)Cross-Site Scripting (XSS)Cross-Site Request Forgery (CSRF)Authentication and Authorization flawsBusiness Logic vulnerabilities
• Assess RESTful and GraphQL APIs for security weaknesses.

Cloud & Infrastructure Security

• Conduct security assessments of cloud platforms such as AWS, Azure, and GCP.
• Evaluate IAM configurations, network security controls, container security, and cloud-native services.
• Perform Active Directory and Windows/Linux security assessments.
• Assess Kubernetes and containerized environments.

Reporting & Remediation

• Prepare detailed technical and executive-level penetration testing reports.
• Clearly document findings, risk ratings, proof-of-concept exploits, and remediation recommendations.
• Present findings to technical teams, management, and stakeholders.
• Support remediation validation and security re-testing activities.

Security Research & Innovation

• Stay current with emerging threats, attack techniques, and vulnerabilities.
• Develop custom scripts, tools, and automation to enhance testing capabilities.
• Participate in threat modeling and security architecture reviews.
• Contribute to internal security standards, methodologies, and best practices.

Required Skills & Experience

Technical Skills

• 8+ years of hands-on penetration testing and offensive security experience.
• Strong expertise in:Web Application Security TestingAPI Security TestingMobile Application Security Testing (iOS/Android)

Interested candidate please share your updated copy of resume at vijay@helius-tech.com

( To receive a quick response, kindly leave a message on the WhatsApp number +65 92333815)

Scam prevention reminder: You should not make any pre-payment when applying for any job.

Illegal practices reminder: It is illegal for recruiter to collect payment (kickback) from the worker https://www.mom.gov.sg/-/media/mom/documents/publications/foreign-workers/what-are-kickbacks.pdf