company-logo-image

Penetration Tester

ashley-avatar-image

AI-generated summary

beta

This job is all about uncovering weaknesses in computer systems to keep them safe. You might like this job because you'll use creative problem-solving skills to simulate attacks, help organizations improve security, and stay ahead of cyber threats.

RM 5000 - RM 8000

Bandar Tasik Selatan, Kuala Lumpur

Job Description

The primary focus of this job is to conduct authorized offensive security testing to identify, exploit, and document vulnerabilities across networks, web applications, cloud environments, and endpoints.

  • Plan, scope, and execute penetration tests (black/grey/white box) against systems, networks, web and mobile applications, APIs, cloud services, and internal infrastructure.
  • Develop and run exploit chains, proof-of-concept code, and realistic attack scenarios to validate impact.
  • Perform vulnerability discovery using automated scanners and thorough manual testing (SAST/DAST, network scanning, fuzzing, logic flaws).
  • Produce professional, prioritized penetration test reports: executive summary, technical findings, risk rating, and remediation steps.
  • Present findings to technical teams and leadership; provide remediation guidance and retest to confirm fixes.
  • Maintain and extend internal exploit tooling, scripts, and test frameworks; contribute to knowledge base and playbooks.
  • Stay current with threat actor techniques, CVEs, exploit frameworks (Metasploit, Cobalt Strike alternatives), and new offensive tools.

Job Requirements

  • Must possess a bachelor's degree in IT or a related field (must indicate GPA in CV).
  • Must have relevant certifications (e.g. OSCP, CREST, CRT).
  • At least 2 years’ experience in penetration testing or a similar role in cybersecurity.
  • Strong understanding of network protocols, application security, and operating systems.
  • Proficiency with penetration testing tools (e.g., Metasploit, Burp Suite, Nmap, Kali Linux, Tenable, Metasploit).
  • Experience with scripting languages (Python, Bash, etc.) and security frameworks.
  • Experience in conducting penetration tests and vulnerability assessments on web & mobile applications, servers, networks, and database devices. Experience with wireless and mobile testing is also an advantage.
  • Experience in testing both Windows and Linux environments.
  • Ability to write solid, high-quality penetration testing reports.
  • Excellent written and verbal communication skills in English.
  • Excellent problem-solving skills with attention to detail.
  • Proficient in MS Office.
  • Able to work independently with minimal supervision.
  • Highly organized, self-motivated, enthusiastic, and a fast learner with good time management.
  • Team player with a pleasant personality
  • Must possess own four-wheeled vehicle.
  • Candidate must be Malaysian.

Skills

Microsoft Office
Penetration Testing
Cyber Security
Scripting

Company Benefits

Phone & Data

Mobile phone plan allowance.

Medical & Insurance

Medical claims and insurance reimbursements provided.

Sports Benefits

Reimbursements for your sports activities.

Travel & Parking

Travel mileage claims and parking allowance.


Additional Info

Company Activity

Last active - few minutes ago

Career Level

Senior Executive

Job Specialisation


Company Profile

Bright Nexus (M) Sdn Bhd-logo-image

Bright Nexus (M) Sdn Bhd

We are an organization comprising of highly dedicated security specialists and supported by strategic solution partners, who are laser-focused on helping our customers step up their security game. At Bright Nexus, we provide our customers with peace of mind that their business is run in a secure environment. We offer solutions and services in the following three major areas.Solution IntegrationManaged Security...