Penetration Tester & Security Researcher

Description:

Accelerate Your Career in Cybersecurity

As a leader in Automated Security Validation, we help businesses around the world safely emulate real-world attacks to uncover their vulnerabilities. At Pentera, you will be at the forefront of cybersecurity innovation, working on advanced tools that challenge organizations' defenses and push the limits of security testing.

With over 400 team members and 1,100+ customers in more than 50 countries, Pentera is a growing company supported by top investors like Insight Partners, K1, and The Blackstone Group.

If you are looking to grow your skills, make a difference, and be part of an innovative team, Pentera is the place for you.

About the Role:

We are seeking a talented Penetration Tester & Researcher to lead complex offensive security engagements and groundbreaking research. You will execute sophisticated attack simulations, identify high-value vulnerabilities, and collaborate with clients to enhance their security posture.

This role offers a balance between hands-on technical assessments and original research that shapes the broader cybersecurity community.

Roles and Responsibilities:

• Conduct advanced penetration tests across web, mobile, and thick-client applications.
• Contribute to internal tools, scripts, and methodologies that enhance efficiency.
• Design and simulate real-world attack chains reflecting modern threat actors.
• Perform vulnerability research, exploit development, and threat modeling.
• Research, develop, and implement offensive security methodologies utilizing AI technologies.
• Produce detailed technical reports with actionable remediation strategies.
• Collaborate directly with clients to guide mitigation and improve resilience.
• Publish research, present findings, and represent Pentera at conferences or in public forums.

• 2-3 years of experience in application penetration testing, including mobile, web, and thick-client applications.
• Hands-on experience using AI offensively and attacking AI-powered systems.
• Solid technical foundation in networking, operating systems, and cloud.
• Excellent communication and presentation skills.
• Fluency in Hebrew and English.

Preferred Skills

• Active participation in bug bounty programs or responsible disclosure initiatives.
• Industry certifications such as OSCP, OSWA, OSWE, or OSCE.
• Familiarity with cloud and container security, Kubernetes, and IaC.
• Experience integrating security practices within development lifecycles.
• Proven ability to lead or publish offensive research.

We are an equal opportunity employer and we are committed to building a diverse and talented workforce. We do not discriminate on the basis of race, sex, religion, colour, national origin, gender, gender identity, sexual orientation, age, marital status, veteran status, medical condition, disability, or any other class or characteristic protected by applicable law. We welcome candidates from all backgrounds to join us!