penetration tester

2 weeks ago

Singapore YY SMART TECH PTE. LTD. Full time
Roles & Responsibilities

Job Overview

We are seeking for a Penetration Tester with CAT1 Security Clearance to lead VAPT for Singapore government and critical infrastructure sectors. You will execute full-scope attacks (networks, apps, cloud, OT), bypass advanced defenses, and deliver actionable remediation strategies.

This role requires CREST/OSCP certification, deep exploit development skills, and experience with GovTech cybersecurity frameworks.

Core Responsibilities

Advanced Threat Emulation:

  1. CAT1-cleared engagements:
  2. Network: Breach segmented govt networks (e.g., air-gapped systems)
  3. Applications: Exploit web/mobile apps (SCADA interfaces, GovTech portals)
  4. Cloud: Attack AWS GovCloud/Azure Government environments
  5. OT: ICS/SCADA system penetration (Siemens, Rockwell)
  6. Develop custom malware/exploits (C++, Python) to evade EDR/XDR.

Red Team Operations:

  1. Lead multi-vector campaigns:
  2. Phishing (Evade Proofpoint/MS ATP)
  3. Physical security bypass (RFID cloning, access control spoofing)
  4. Wireless attacks (802.1X, WPA3-Enterprise)
  5. Document TTPs aligned with MITRE ATT&CK for ICS/Enterprise.

Govt Compliance & Reporting:

  1. Align tests with IM8, CSA Red Teaming Guidelines, and NIST SP 800-115.
  2. Deliver executive briefings to CISOs with exploit demos.
  3. Create remediation playbooks

Research & Development:

  1. Reverse engineer firmware (Binwalk, Ghidra) for 0-day discovery.
  2. Contribute to ASEAN CERT advisories (e.g., SingCERT).

Technical Requirements

Non-Negotiable Credentials:

  1. CAT1 Security Clearance
  2. Active Certifications: OSCP or CREST CRT/CCT (Inf/App)
  3. 2+ years in pentesting

Tool Proficiency

  1. Exploitation - Metasploit Pro, Cobalt Strike, Burp Suite Pro, PowerSploit
  2. Post-Exploit - BloodHound, Mimikatz, Impacket, Covenant C2
  3. Forensics - Volatility, Wireshark, CHIRP (ICS)
  4. Wireless - HackRF One, Proxmark3, Wi-Fi Pineapple
  5. Cloud - Pacu (AWS), MicroBurst (Azure), GCP IAM Exploit Toolkit

Preferred Qualifications

  1. Certifications: OSCE³, CREST CCT Gold, OSCP
  2. Govt Framework Experience: IM8 Penetration Test Guidelines, CSA Cyber Essentials
  3. Public Contributions: CVEs, exploit-db submissions, conference talks (Black Hat Asia, DEFCON)
Tell employers what skills you have

Security Clearance
Remediation
Wireshark
Exploitation
Physical Security
Wireless
Access Control
SCADA
Phishing
Gold
Penetration Testing
Python
Firmware
GCP
Burp Suite

  • Penetration Tester

    2 weeks ago

    Singapore SSquad Global Full time

    **We're Hiring: Penetration Tester (Immediate Joiner)** **Location**: Singapore (Work from Office, 5 Days) **Experience**: 3+ Years **Availability**: Immediate Joiners Only **Interview Mode: Virtual,** Ssquad Global is seeking a skilled and passionate **Penetration Tester** to join our cybersecurity team at our Bangalore office. If you're a security...

  • Penetration Tester

    2 weeks ago

    Singapore SSquad Global Full time $12,299 - $40,864 per year

    We're Hiring: Penetration Tester (Immediate Joiner)Location: Singapore (Work from Office, 5 Days)Company: Ssquad Global )Experience: 3+ YearsAvailability: Immediate Joiners OnlyInterview Mode: Virtual,Ssquad Global is seeking a skilled and passionate Penetration Tester to join our cybersecurity team at our Bangalore office. If you're a security professional...

  • Penetration Tester

    2 weeks ago

    Singapore ST ENGINEERING INFO-SECURITY PTE. LTD. Full time

    We are seeking an experienced Penetration Tester to join our team. The successful candidate will have expertise in cloud / mobile security, penetration testing, and vulnerability assessment. The role involves identifying and exploiting vulnerabilities in cloud-based systems, applications, and infrastructure to help our organization strengthen its cloud...

  • Cybersecurity Penetration Tester

    1 week ago

    Singapore beBeeCybersecurity Full time $80,000 - $120,000

    Protect Your Business with Our Cybersecurity ExpertiseAbout the Role:We are seeking a skilled penetration tester to join our team of cybersecurity professionals. As a member of our team, you will have the opportunity to work on engagement teams serving clients in providing independent assessments or implementation of cyber solutions.Your Key...

  • Penetration Testers

    6 days ago

    Singapore SEDHA CONSULTING PTE. LTD. Full time

    **Penetration Testers** **Job Scope**: - Conduct simulated cyber attacks against systems to identify vulnerabilities that could be exploited. - Engage in both automated and manual testing techniques to evaluate security defenses. - Mimic the techniques used by attackers to discover security weaknesses and the potential impacts of...

  • Trainee for Penetration Tester

    5 days ago

    Singapore FORTIEDGE PTE. LTD. Full time

    We are looking for 4 trainee for the following role. Role: Perform penetration testing & Vulnerability Assessment based on proven methodologies. Web application penetration testing Mobile application penetration testing Network penetration testing Perform security hardening review of infrastructure, common operating systems and servers. Perform Source Code...

  • Penetration Tester

    1 week ago

    Singapore FORTIEDGE PTE. LTD. Full time

    Company: Fortiedge Pte. Ltd.About Us: Fortiedge is a cybersecurity firm dedicated to protecting our clients' digital assets. We are committed to innovation, excellence, and providing top-notch services. Join our team and help us safeguard the future.Job Description: We are seeking a skilled and motivated Penetration Tester to join our cybersecurity team....

  • Penetration Tester

    6 days ago

    Singapore THE HACENS TALENT PTE. LTD. Full time

    **Job Desk**: - Identify, exploit, and document vulnerabilities in various systems. - Work with the senior penetration tester to develop and execute test plans. - Perform vulnerability assessments using automated tools and manual techniques. - Contribute to the creation of detailed reports outlining findings and providing actionable remediation...

  • Trainee for Penetration Tester

    5 days ago

    Singapore FORTIEDGE PTE. LTD. Full time

    We are looking for 4 trainee for the following role.Role:Perform penetration testing & Vulnerability Assessment based on proven methodologies.Web application penetration testingMobile application penetration testingNetwork penetration testingPerform security hardening review of infrastructure, common operating systems and servers.Perform Source Code...

  • Penetration Tester

    5 days ago

    Singapore FORTIEDGE PTE. LTD. Full time

    Company: Fortiedge Pte. Ltd. About Us: Fortiedge is a cybersecurity firm dedicated to protecting our clients' digital assets. We are committed to innovation, excellence, and providing top-notch services. Join our team and help us safeguard the future. Job Description: We are seeking a skilled and motivated Penetration Tester to join our cybersecurity...