Penetration Tester

Direct message the job poster from Vagmine Tech IT

This is a contract role for a Penetration Tester located on-site in Johannesburg, South Africa. The Penetration Tester will be responsible for conducting comprehensive security assessments, identifying vulnerabilities, and simulating cyber-attacks to evaluate the security of systems, applications, and networks. The role involves preparing detailed reports on findings, providing recommendations for remediation, and collaborating with various stakeholders to enhance the organisation's security posture.

• Perform manual/automated penetration tests (web, mobile, API, cloud, network).
• Lead red team exercises and adversary simulations for banks.
• Analyze and document vulnerabilities in critical systems.
• Review security configurations and architectures.
• Collaborate on remediation and technical solutions.
• Deliver technical and executive-level reports.
• Align testing to compliance frameworks (POPIA, PCI DSS, ISO 27001, SWIFT CSP).
• Support incident response and conduct security awareness sessions.

• 5+ years in penetration testing, offensive security.
• Deep knowledge of banking security risks, OWASP, NIST, SANS 25.
• Experience with core banking systems, SWIFT, EFT, RTGS.
• Proficiency in offensive security tools (Burp Suite, Metasploit, Kali, etc.).
• Cloud and container security (AWS, Azure, GCP, Kubernetes).
• Scripting (Python, Bash, PowerShell).

• OSCP (Mandatory)
• CREST
• GPEN
• GWAPT
• OSCE
• OSEE
• CISSP
• CISM (preferred for leadership growth)

• Attention to detail, analytical problem-solving, and strong communication.
• Collaboration with multi-disciplinary teams and clients.
• High ethics and discretion for sensitive data.

• High-quality penetration tests and red team delivery.
• Effective remediation and risk reduction.
• Positive client feedback and reporting excellence.
• Continuous improvement of security methodologies.

• Mid-Senior level

• Contract

• Information Technology

• IT Services and IT Consulting