Penetration Tester

Description Scytale is a fast‑growing B2B SaaS startup transforming security, privacy and AI compliance for businesses worldwide. Our innovative Compliance‑as‑a‑Service platform simplifies frameworks like SOC 2, ISO 27001, HIPAA, GDPR, and PCI DSS for startups, scale‑ups, and enterprises. Recognized as a Governance, Risk & Compliance leader on G2, we’re a global leader in the security and compliance space. The ideal candidate will be responsible for conducting comprehensive penetration tests, identifying vulnerabilities, and providing recommendations to improve security posture. Candidates must have experience in web application security and infrastructure, be highly motivated, and have a good command of industry best practices such as OWASP TOP10. Requirements Minimum of 1 year of experience in web application and API penetration testing Familiarity with infrastructure testing OSCP / OSEP / CCSP / CRTE / CRTP or CRTO certification or equivalent – an advantage Proficiency in OWASP top 10 vulnerabilities Android and iOS application penetration testing Self‑driven, motivated, independent yet communicative & collaborative High English level with excellent verbal and written skills Responsibilities Conduct comprehensive penetration testing and vulnerability assessments on web applications, networks, and other systems Perform manual and automated testing in various engagements such as internal/external networks, web applications, and mobile and cloud environments Develop custom scripts and tools to automate testing processes Identify security weaknesses and provide recommendations to improve security posture Guide clients on the mitigations of vulnerabilities Stay up‑to‑date with industry developments and best practices Collaborate with the team to improve internal processes and methodologies Seniority level Entry level Employment type Full‑time Job function Information Technology Industries Technology, Information and Internet #J-18808-Ljbffr