Description

This role is designated as a full-time position and will serve as the first dedicated offensive security

hire. The scope includes independent execution of testing activities, client-facing

communication, technical documentation, and reporting in both English and Hebrew.

3. Responsibilities

3.1 Plan, execute, and document full-cycle penetration tests including:

3.1.1 Scoping and rules-of-engagement definition

3.1.2 Manual and automated vulnerability identification

3.1.3 Exploitation and lateral movement

3.1.4 Risk classification and reporting

3.2 Test the security posture of:

3.2.1 Web applications (OWASP-based testing)

3.2.2 On-prem infrastructure and server environments

3.2.3 Cloud environments: Microsoft Azure, AWS

3.2.4 SaaS platforms including Microsoft 365

3.3 Present findings and remediation recommendations to clients (Hebrew and English)

3.4 Write technical reports and executive summaries in both languages

3.5 Contribute to the internal development of testing methodology and tools

4. Qualifications

4.1 Minimum Requirements:

4.1.1 At least 3 years of hands-on penetration testing experience

4.1.2 Demonstrated experience delivering end-to-end pentest projects

4.1.3 Strong technical expertise with the following tools/environments:

4.1.4 Burp Suite, Nmap, Nessus, Metasploit, Wireshark, Kali Linux

4.1.5 Scripting or programming knowledge in Python, C#, or Java

4.1.6 Experience with Microsoft 365 and Azure/AWS security testing

4.2 Certifications (at least one):

4.2.1 OSCP – Offensive Security Certified Professional

4.2.2 OSEP – Offensive Security Experienced Penetration Tester

4.2.3 CRTP – Certified Red Team Professional

5. Communication & Language Requirements

5.1 Fluent in spoken and written English, including technical communication

5.2 Ability to present complex findings to technical and non-technical audiences in both English and Hebrew

5.3 Strong documentation and reporting skills in both languages

6. Work Model

6.1 Location: Most client work will be performed on-site in Herzliya, with additional collaboration taking place remotely or from the Tel Aviv office.

6.2 Work Schedule: Full-time, Sunday–Thursday