Penetration Tester / Ethical Hacker / Security Analyst

About The Role

We are looking for a skilled and detail-oriented Penetration Tester / Ethical Hacker with strong expertise in cybersecurity, vulnerability assessments, and security auditing. The ideal candidate should be capable of identifying security weaknesses, performing controlled exploits, and providing actionable remediation recommendations to enhance the organizations security posture.

Key Responsibilities

• Perform penetration testing across web applications, mobile apps, APIs, networks, cloud, and infrastructure.
• Conduct vulnerability assessments, risk analysis, and security audits.
• Identify, exploit, and validate real-world security vulnerabilities using industry-standard tools and techniques.
• Prepare detailed reports, including proof of concepts, impact analysis, and remediation steps.
• Work closely with development, DevOps, and IT teams to close vulnerabilities and improve security maturity.
• Perform threat modeling, attack simulations, and red team exercises.
• Monitor emerging cyber threats and propose security improvements.
• Ensure compliance with relevant frameworks (ISO 27001, NIST, CIS, SOC2, etc.).
• Help implement security best practices across the organization.
  
  
  

Required Skills & Qualifications

• Strong knowledge of penetration testing methodologies (OWASP, PTES, MITRE ATT&CK).
• Proficiency with tools such as:
• Burp Suite
• Metasploit
• Kali Linux
• Nessus / OpenVAS
• Wireshark
• Nmap
• Nikto
• Hydra, John the Ripper, Hashcat
  
• Strong understanding of:
• Web security
• Network security
• Linux & Windows environments
• Scripting (Python, Bash, PowerShell)
  
• Ability to write clear and professional audit/security reports.
• Excellent problem-solving, analytical, and communication skills.
  
  

Preferred Qualifications

Prior experience in Red Team / Blue Team operations.

Knowledge of cloud platforms (AWS, Azure, GCP).

Experience with SIEM, IDS/IPS, Firewall configurations.

Certifications (Plus point):

• CEH (Certified Ethical Hacker)
• OSCP
• eJPT / eWPT
• Security+
• CISA / CISM
• ISO 27001 Lead Auditor
• Location: Lahore/Islamabad/Karachi (Remote)
• Type: Part-time
• Experience: 5+ Years
• Department: Information Security & Compliance
  
  
  

About Us:

TEKHQS is a global technology solutions provider headquartered in Lake Forest, California, with a 300+ expert team in Pakistan. We specialize in ERP (SAP S/4HANA, Oracle NetSuite, Microsoft Dynamics 365), AI/ML, Blockchain, Cloud, and Staff Augmentation services. Join us to drive business growth and work on cutting-edge global IT projects with hands-on mentorship and a clear career path.