Our jobs

April 2025

Penetration Tester

Hong Kong 

About the Role:

We’re looking for a highly skilled Penetration Tester to join our cybersecurity team and help identify vulnerabilities across our systems, networks, and applications. You’ll simulate real-world attacks to uncover weaknesses before adversaries do — playing a critical role in keeping our organization secure.

Key Responsibilities:

  • Conduct penetration testing on internal and external assets, including web apps, mobile apps, APIs, and network infrastructure.

  • Perform vulnerability assessments and exploit weaknesses in a controlled, ethical manner.

  • Collaborate with development, DevOps, and IT teams to remediate security issues.

  • Create detailed reports outlining vulnerabilities, risks, and recommended mitigations.

  • Stay current on the latest vulnerabilities, exploits, and security trends.

  • Assist in developing red team exercises or adversary simulation engagements.

  • Contribute to the development of internal testing methodologies and tools.

Required Skills & Experience:

  • Police clearance cert.

  • Proven experience in penetration testing, ethical hacking, or red teaming.

  • Strong understanding of OWASP Top 10, CVEs, and modern attack vectors.

  • Familiarity with tools like Burp Suite, Metasploit, Nmap, Nessus, Wireshark, etc.

  • Experience with scripting in Python, Bash, or PowerShell.

  • Knowledge of operating systems (Linux, Windows) and networking fundamentals.

  • Relevant certifications (e.g., OSCP, CEH, GPEN, or equivalent)

Feb  2025

Senior Penetration Tester

About the Role:

We’re seeking a Senior Penetration Tester to take a leading role in identifying and exploiting vulnerabilities across our digital infrastructure. As a senior member of the security team, you’ll lead engagements, guide junior testers, and contribute to the strategic direction of offensive security initiatives. Your insights will directly influence how we protect systems, users, and data at scale.

Key Responsibilities:

  • Lead and execute advanced penetration testing across applications, networks, APIs, cloud environments, and internal systems.

  • Mentor and support junior penetration testers, providing guidance on testing techniques, methodologies, and career development.

  • Design and lead complex red team operations and adversary emulation scenarios.

  • Develop and refine internal testing tools, scripts, and methodologies.

  • Deliver clear, actionable reports and executive summaries of findings and recommendations.

  • Collaborate cross-functionally with engineering, IT, compliance, and risk teams to drive remediation and long-term security improvements.

  • Stay ahead of the curve by researching new exploits, attack vectors, and emerging security threats.

  • Contribute to security architecture reviews and threat modeling initiatives.

Required Skills & Experience:

  • 4+ years of hands-on experience in penetration testing or red teaming.

  • Advanced knowledge of common vulnerabilities (OWASP Top 10, CVSS, MITRE ATT&CK).

  • Proficiency with penetration testing tools (Burp Suite Pro, Metasploit, Cobalt Strike, etc.).

  • Strong scripting or programming skills (Python, PowerShell, Bash, or similar).

  • Deep understanding of network protocols, operating systems, and secure architectures.

  • Certifications such as OSCP, OSCE, OSEP, GPEN, GXPN, or equivalent strongly preferred.

  • Excellent communication skills — able to present technical issues to both technical and non-technical stakeholders.

Nice to Have:

  • Experience with cloud security testing (AWS, Azure, GCP).

  • Prior involvement in bug bounty programs, CTF competitions, or open-source security projects.

  • Experience integrating penetration testing into a secure SDLC or DevSecOps pipeline.

  • Familiarity with compliance frameworks (ISO 27001, PCI-DSS, NIST, etc.).

Hong Kong

2025

Partner – Cybersecurity

About the Role:

As a Partner in Cybersecurity, you will be at the forefront of driving growth and innovation within our established cybersecurity practice. This senior-level role combines deep technical expertise in cybersecurity with strategic sales leadership, responsible for expanding our market footprint and delivering high-value solutions to Fortune 500 companies, enterprise clients, and government organizations.

You will leverage your vast cybersecurity knowledge and extensive sales experience to manage key accounts, establish trusted relationships with C-suite executives, and work closely with cross-functional teams to shape and deliver cutting-edge cybersecurity solutions. The position offers significant leadership opportunities, client exposure, and a direct impact on the company’s strategic growth.

Key Responsibilities:

  • Drive revenue growth by leading business development and sales efforts for our cybersecurity offerings, including managed services, incident response, penetration testing, compliance, and risk management solutions.

  • Lead client engagement across enterprise and high-profile clients, serving as the primary point of contact for key accounts and prospects.

  • Develop, refine, and execute go-to-market strategies to position our services as the solution of choice for organizations across multiple industries.

  • Forge and nurture strategic partnerships with key vendors, security technology providers, and ecosystem partners to enhance our service offerings.

  • Guide client organizations through their cybersecurity transformations, ensuring our solutions align with their business objectives and regulatory requirements.

  • Collaborate closely with the executive leadership team to set strategic priorities, identify new business opportunities, and contribute to long-term vision planning.

  • Serve as a thought leader in the cybersecurity space, attending and presenting at industry events, speaking on webinars, and contributing to publications or blogs.

  • Lead internal efforts to develop and refine cybersecurity offerings, ensuring they remain cutting-edge and competitive in the marketplace.

  • Oversee and mentor a team of sales professionals and cybersecurity consultants, supporting their professional growth and ensuring alignment with organizational goals.

Required Skills & Experience:

  • 10+ years of experience in cybersecurity solutions, with 5+ years in a business development or sales leadership role in a consulting or managed security services environment.

  • Proven ability to sell complex cybersecurity services and solutions, such as threat detection, incident response, penetration testing, cloud security, and GRC.

  • A strong network and established relationships with key decision-makers in enterprise-level organizations (CIOs, CISOs, CTOs) and relevant industries (e.g., finance, healthcare, government).

  • Deep understanding of cybersecurity trends, emerging threats, and regulatory frameworks (NIST, SOC 2, GDPR, ISO 27001, etc.).

  • Strong consultative sales skills — adept at navigating complex procurement cycles and creating tailored solutions to meet client needs.

  • Demonstrated success in leading and growing business units or sales teams, with a clear track record of exceeding targets and driving revenue growth.

  • Excellent communication skills, with the ability to articulate technical concepts to both technical and non-technical audiences at the executive level.

  • Bachelor’s degree in Information Security, Computer Science, Business Administration, or a related field. Advanced certifications (e.g., CISSP, CISM, CISA) or an MBA would be a plus.

Hong Kong 

Contact Us