A
Penetration Tester
Antons Recruitment Agency
Dubai, UAEAED 4,000-10,000/moToday
UAEIT & TechnologyFull Time
Skills Required
PythonSqlAwsAzureDockerKubernetesGitDevops
Job Description
We are seeking a skilled Penetration Tester with strong experience in CI/CD pipeline security to identify, assess, and mitigate security vulnerabilities across applications, infrastructure, and automated deployment environments. The role focuses on proactive security testing, secure DevOps practices, and strengthening systems against evolving threats.Key ResponsibilitiesConduct penetration testing on web applications, APIs, networks, and cloud environments.Perform security assessments of CI/CD pipelines, including build, test, and deployment workflows.Identify vulnerabilities related to source code repositories, automation tools, container images, and secrets management.Test authentication, authorization, session management, and access controls.Assess API security, including token handling, rate limiting, and authorization flaws.Execute static (SAST), dynamic (DAST), and dependency security testing within CI/CD processes.Validate security of containerized environments (Docker, Kubernetes).Simulate real-world attack scenarios and document findings with clear remediation guidance.Collaborate with development and DevOps teams to implement secure-by-design practices.Support incident response investigations and post-incident analysis when required.Required Skills & Experience2+ years of experience in penetration testing, application security, or ethical hacking.Strong understanding of CI/CD pipelines and DevSecOps methodologies.Hands‑on experience securing tools such as GitHub Actions, GitLab CI, Jenkins, Azure DevOps, or similar.Proficiency in web and API security testing (OWASP Top 10, OWASP API Top 10).Experience with authentication mechanisms (JWT, OAuth2, SSO).Knowledge of common vulnerabilities: SQLi, XSS, CSRF, SSRF, IDOR, RCE, misconfigurations.Familiarity with Linux environments, networking concepts, and cloud security fundamentals.Tools & TechnologiesPenetration testing tools: Burp Suite, Metasploit, Nmap, OWASP ZAP, Nikto.CI/CD security tools: Snyk, Trivy, SonarQube, Dependabot, GitGuardian.Container and cloud security tools (experience preferred).Scripting knowledge in Python, Bash, or PowerShell is an advantage.#J-18808-Ljbffr
Similar Opportunities
Network Engineer
Root 360 Information Technology Consultants
Dubai, UAEAED 8,000-20,000/moToday
UAEIT & Technology
Strategic Planning & Forecasting Analyst
HP
Dubai, UAEAED 8,000-20,000/moToday
UAEIT & Technology
Expert Manager, Software Engineering
Bain & Company
Dubai, UAEAED 8,000-20,000/moToday
UAEIT & Technology
Senior SAP FLM/TM Lead — Fleet&Transportation Excellence
CreditNinja - KMD Partners, LLC
Riyadh, Saudi ArabiaSAR 10,000-12,500/moToday
Saudi ArabiaIT & Technology
Staff Product Manager - AI Language Solutions
Stryker Corporation
Riyadh, Saudi ArabiaAED 15,000-35,000/mo≈ SAR 15.3K-35.7K/moToday
Saudi ArabiaIT & Technology
2.2.6-SR. SYSTEM ENGINEER (DEVELOPMENT) - POWER PLATFORM SOLUTION DEVELOPER
Mekdam Technical Services
Doha, QatarQAR 7,350-18,900/moToday
QatarIT & Technology