46 Penetration Testers jobs in Malaysia

Penetration Tester

Join us as Senior Analyst on our Penetration Testing team in Malaysia – On-site to do the best work of your career and make a profound social impact.

The ideal candidate possesses a firm understanding of attack surfaces in web technologies, networks, and operating systems. Candidates must demonstrate the ability to analyze closed source applications using several off-the-shelf or custom developed tools. Additionally, the ideal candidate will be able to demonstrate organizational skills, work efficiently under minimal supervision, deliver results that meet or exceed the organization’s expectations, be a strong team player, and actively participate in a fast-paced and challenging global environment.

• Conduct and participate in authorized penetration testing exercises.

• Report on and prioritize issues to vendors, security team, and engineering through standard escalation processes.

• Communicate new developments, breakthroughs, challenges and lessons learned to team members and leadership.

• Collaborate with the development of cybersecurity strategy, policy, standards, and procedures.

• Work with management and senior team members on how to integrate information security controls into enterprise environments to comply with established security standards and policies.

• Continuously upgrade knowledge, skills & awareness in cybersecurity technologies by way of independent research, training, or any other self-improvement methods e.g., reading, HTB, CTF competitions.

• Collaborate on additional projects, assignments, and initiatives as required.

Take the first step towards your dream career

Every Dell Technologies team member brings something unique to the table. Here’s what we are looking for with this role:

• Minimum of 2 years in Information Security, including at least 1 year of hands-on experience in one or more of the following areas: penetration testing, exploit development, vulnerability research, or fuzzing.

• Bachelor’s degree in Computer Science, Computer Engineering, Electrical Engineering, or a related technical field — or equivalent professional experience.

• Cybersecurity Certifications: Possession of at least one of the following relevant certifications: eLearnSecurity Certified Professional Penetration Tester (eCPPTv2), Offensive Security Certified Professional (OSCP), GIAC Penetration Tester (GPEN), or GIAC Web Application Penetration Tester (GWAPT).

• Intermediate-level knowledge of penetration testing tools and techniques, cyberattack stages, application security standards, and testing methodologies for web applications, APIs, and network/infrastructure.

• Solid understanding of computer networking, operating system internals, and common security threats, vulnerabilities, and risks affecting systems and applications.

• Experience writing code in modern programming languages (e.g., C, C++, Java, .NET, Python), with knowledge of debugging principles and the ability to develop custom scripts, exploits, and tools.

• Strong written and verbal communication skills in English, with a customer-oriented mindset and the ability to produce professional security reports and effectively present findings to technical and non-technical stakeholders.

We believe that each of us has the power to make an impact. That’s why we put our team members at the center of everything we do. If you’re looking for an opportunity to grow your career with some of the best minds and most advanced tech in the industry, we’re looking for you.

Dell Technologies is a unique family of businesses that helps individuals and organizations transform how they work, live and play. Join us to build a future that works for everyone because Progress Takes All of Us.

Application closing date: 11 September 2025

Dell Technologies is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. Read the full Equal Employment Opportunity Policy here.

Overview

We are seeking a security-focused professional to lead and support secure development practices across our engineering teams. This role involves conducting secure design reviews, threat modeling, secure code reviews, and penetration testing, while also assisting developers in analyzing and resolving scan results.

• Perform secure design assessments, threat modeling, code reviews, and penetration testing.
• Support developers in interpreting and triaging security scan findings.
• Create detailed reports and presentations tailored for both technical and executive audiences, including actionable security recommendations.
• Communicate security findings and strategies effectively to stakeholders at all levels.
• Develop and promote security standards and training on secure design principles, including cryptography, authentication, and access control.
• Lead security engagements from planning through remediation and mentor junior team members.

• Skilled in coding with modern programming languages and secure development practices
• Experienced in using security tools for testing mobile apps, APIs, and websites
• 2–4 years of experience in at least three of the following areas:
• Secure systems in finance
• Cloud-based container infrastructure
• Building and testing mobile apps, APIs, and web apps

• Seniority level: Associate
• Employment type: Full-time
• Industries: Banking and Financial Services

Hytech Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia

Hytech Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia

The Penetration Tester will be responsible for assessing the security of our network, applications, and infrastructure by identifying vulnerabilities and weaknesses that could be exploited by malicious actors. You will work closely with cybersecurity and development teams to provide actionable insights and recommendations, helping us protect critical assets.

Job Responsibilities:

• Conduct in-depth penetration tests on applications, network systems, and IT infrastructure.
• Develop and execute test plans, including vulnerability scanning, exploit research, and attack simulations.
• Identify and document security vulnerabilities, offering guidance and recommendations for remediation.
• Collaborate with the cybersecurity team to simulate realistic attack scenarios to evaluate the resilience of our systems.
• Stay current on new security threats, technologies, and techniques, applying them to improve testing strategies.
• Assist in developing and refining security policies and best practices to improve the company’s overall security stance.

Job Requirements:

• Minimum Diploma in Computer Science, Information Security, or a related field. Relevant certifications are a plus (e.g., OSCP, CEH, CISSP).
• At least 2 years experience in penetration testing or a similar role in cybersecurity.
• Strong understanding of network protocols, application security, and operating systems.
• Proficiency with penetration testing tools (e.g., Metasploit, Burp Suite, Nmap).
• Experience with scripting languages (Python, Bash, etc.) and security frameworks.
• Excellent problem-solving skills with attention to detail.
• Familiarity with compliance and regulatory standards (e.g., GDPR, HIPAA, PCI-DSS).
• Hands-on experience with cloud platforms (AWS, Azure, Google Cloud) security assessments.

Benefits and Perks:

• Accessible by public transport (5 mins walking distance from LRT Abdullah Hukum)
• Young, Passionate & Friendly Working Environment.
• Rewarding career development with regional exposure.
• Team building, creation, birthday party, free flow of snacks and drinks.

#DotConnect: Unleashing the Power of Connectivity

Do you believe in the power of connections to transform careers and shape a brighter future? Together, let's connect our dots, inspire innovation, and build a workplace where talents unite to create extraordinary possibilities.

• Seniority level Executive

• Employment type Full-time

• Job function Information Technology
• Industries Desktop Computing Software Products and IT System Custom Software Development

Referrals increase your chances of interviewing at Hytech by 2x

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 6 days ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 weeks ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 8 months ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 6 months ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 month ago

Petaling Jaya, Selangor, Malaysia 6 months ago

Petaling Jaya, Selangor, Malaysia 1 month ago

Petaling Jaya, Selangor, Malaysia 4 days ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 6 months ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 weeks ago

Petaling Jaya, Selangor, Malaysia 6 months ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 month ago

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 3 weeks ago

Federal Territory of Kuala Lumpur, Malaysia 3 weeks ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 6 days ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 day ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 3 months ago

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago

Petaling Jaya, Selangor, Malaysia 6 months ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 6 months ago

Federal Territory of Kuala Lumpur, Malaysia 6 days ago

Wilayah Persekutuan Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 6 days ago

Federal Territory of Kuala Lumpur, Malaysia 1 day ago

Petaling Jaya, Selangor, Malaysia 4 days ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Responsibilities:-

Penetration testing scheduling

• Plan and communicate the penetration testing timeline with internal stakeholders and external vendors at the beginning of calendar year.
• Ensure penetration testing schedule is executed as per the plan for each in-scope applications.
• Facilitate meetings between application development teams and external vendors for any discussion and clarification needed, including possibility of conflicting schedules and priorities.

Penetration testing tracking and issues remediation

• Tracking of penetration testing issues and compiling the status on a weekly basis.
• Making sure issues are remediated timely according to the timeline stipulated in vulnerability management standard.
• Proactively perform outstanding issues escalation based on the severity of the findings based on the defined issues escalation processes.

Penetration testing basic issues analysis

• Perform basic review of penetration issues findings to identify any potential common problems, based on web and mobile application security guideline/checklist of OWASP Top 10.
• Conduct basic security risk assessment based on the identified issues during penetration testing to identify area of improvement and potential mitigations.
• Provide basic advice to application teams for general vulnerability remediation. Arrange meeting or discussion with related security SME for deeper issues analysis from penetration testing engagement.

Requirements:-

• University degree preferably in one of the following or related disciplines: Information Systems, Computer Science, Information Security, Information Systems.
• Preferably a holder of one or more of the following information security or project management certifications, such as CISA, PMP.
• Proficiency in Mandarin language to support Mandarin-speaking stakeholders.
• Min 3 to 4 years of experience working in Technology / project management preferably in the information security domain, with experiences in managing penetration testing engagement.
• Strong project management skills and the ability to coordinate with multiple stakeholders and manage conflicting priorities.
• Experience in coordinating and scheduling penetration tests with external vendors.
• Familiarity with vulnerability assessment, penetration testing, and project management with the basic ability to identify and assess various types of vulnerabilities, and proactiveness to engage related SME for a further deeper analysis.

Job Type: Permanent

Pay: RM6, RM10,000.00 per month

Benefits:

• Health insurance

Schedule:

• Monday to Friday

Experience:

• Penetration Tester : 3 years (Preferred)
• Project management: 3 years (Preferred)

Language:

• Mandarin (Preferred)

Work Location: In person

Job Purpose :

As part of the Kuala Lumpur based Offensive Security team, you will be responsible for planning, conducting penetrations tests across Commerzbank Group, documenting the results and providing advisory on the closure of identified findings. Operating primarily remotely, the role focuses on identifying vulnerabilities in IT infrastructure and applications ensuring proactive risk mitigation and compliance with internal and external security standards. In your role, you will closely collaborate with central teams in Commerzbank to strengthen the bank's overall security posture.

Key Activities :

• As a specialist of offensive security, you're testing IT applications and infrastructure of the bank of vulnerabilities and simulate attacks.
• Responsible for the full process of those threat analyses, from planning to execution up to reporting. It's part of those lifecycles to develop targeted techniques and exploits.
• Based on the technical vulnerabilities and respective business processes you do develop risk ratings as well as risk mitigation strategies.
• Analysis of product, protocols and cryptographic implementation are part of the job profile.

Formal Education :

• Completed university degree of IT Security, Computer Science or comparable qualification.

Specialist Knowledge :

• Sound experience in the areas Penetration Testing and Red Teaming.
• Very good knowledge in operation systems, network and cloud technologies.
• Good level of understanding in at least two scripting or programming languages.
• Extensive experience in finding and exploiting vulnerabilities as well profound understanding of cryptographic primitives and concepts.
• Fluent written and spoken English, especially when it comes to technical terms.
• Ability to constantly learn as well as willing to travel.
• Pronounced ability to work in a team and high flexibility.

Penetration Tester (Cybersecurity)

Backend / Full Time

Job Description

Conducting various security assessments, including penetration testing, source code review, and security configuration review.

Assessing the security of assets such as web and mobile applications, network infrastructure, and Internet of Things devices.

Managing work to ensure high-quality and timely completion.

Analyzing threats and vulnerabilities to determine impacts and risks for clients.

Providing professional recommendations and action plans to clients.

Delivering excellent client service and being responsible for the delivery of that service.

Communicating security findings clearly and effectively to internal and external stakeholders through both written and verbal means.

Requires travel to perform on-site security assessments when needed.

Apply Here

Summary

We are seeking a security-focused professional to lead and support secure development practices across our engineering teams. This role involves conducting secure design reviews, threat modeling, secure code reviews, and penetration testing, while also assisting developers in analyzing and resolving scan results.

Key Responsibilities

• Perform secure design assessments, threat modeling, code reviews, and penetration testing.
• Support developers in interpreting and triaging security scan findings.
• Create detailed reports and presentations tailored for both technical and executive audiences, including actionable security recommendations.
• Communicate security findings and strategies effectively to stakeholders at all levels.
• Develop and promote security standards and training on secure design principles, including cryptography, authentication, and access control.
• Lead security engagements from planning through remediation and mentor junior team members.

Key Skills Required

• Skilled in coding with modern programming languages and secure development practices
• Experienced in using security tools for testing mobile apps, APIs, and websites
• 2–4 years of experience in at least three of the following areas:
• Cloud platforms (AWS, Azure, GCP)
• Secure systems in finance
• Cloud-based container infrastructure
• Building and testing mobile apps, APIs, and web apps

Hiring Now: Penetration Testing coordinator | 12-month extendable contract |Kuala Lumpur, Malaysia

We're hiring
Penetration Testing coordinator
for a
12-month
extendable contract Position for our client in Kuala Lumpur, Malaysia.

Primary Skills:

• Project pipeline coordination

• Project plan/activity tracking

• Business Analysis

• Stakeholder communication

• Cybersecurity (at least minimal exposure)

Secondary Skills:

• Document Review

• Conflict resolution

• Multitasking

Position Summary:

This Penetration Testing coordinator is an Individual Contributor role within the CSS VMIS Hive where there will be involvement in change-based initiatives that will enhance the Banks capabilities in Application and Infrastructure Vulnerability Management and cyber security risk reduction.

Responsibilities:

Penetration Testing Coordination

• Perform, coordinate, and manage penetration testing activities, including project planning, implementation, and reporting.
• Support Head of Department in audits, examinations, and scheduling third-party tests (vulnerability scans, penetration tests, risk assessments), including remediation planning and follow-ups.
• Manage project pipeline from business units: schedule meetings, create agendas/minutes, assess project scope/resources, update status reports and Heatmaps.
• Coordinate vendor-managed testing across bank verticals, maintain annual testing schedule, review SOWs, update risk assessment data, and manage vendor metadata (contracts, renewals, onboarding/offboarding).
• Work with stakeholders to gather/validate requirements, align pen test schedules, and support remediation solutions for identified issues.

Governance

• Support Programme/Project Manager in ensuring AIVM programme delivery aligns with Group Standards and System Development Framework.
• Provide regular status updates, track progress against requirements, and report issues/solutions to governance forums until closure.

Good to have skills:

• Experience in Evaluation and validation of information security technologies, including but not limited to: Firewalls, Intrusion Prevention Systems, Email Security Gateways, Web Security Gateways, Web Application Firewalls, Vulnerability Management Tools, Security Incident and Event Management Systems, Anti-malware Systems, Remote Access VPNs, and Encryption technologies
• Prior experience in handling end to end penetration testing project co-ordination for a large multinational bank or service organisation

Qualifications

• Bachelor's degree in engineering, Computer Science/Information Technology or its equivalent.
• 3- 5 Years of experience in relevant role, Penetration Testing Coordination, Business Analyst preferably in a Banking domain and with Cyber Security role (has basic understanding of Cyber & Information Security)
• Industry certifications will be a plus e.g. CISM, CEH, CISSP, SANS GIAC, GPEN, OCSP, CREST certifications

If this sounds like a good fit, I'd be happy to connect. Please share your
updated CV
and let me know a suitable time for a quick discussion.

Email:

Phone:

Referrals are also most welcome

Looking forward to hearing from you.

Join usasSenior Analyst on our Penetration Testingteam in Malaysia–On-siteto do the best work of your career and make a profound social impact.

The ideal candidate possessesfirm understanding of attack surfaces in web technologies, networks, and operating systems. Candidates must demonstrate the ability to analyze closed source applications using several off-the-shelf or custom developed tools. Additionally, the ideal candidate will be able to demonstrate organizational skills, work efficiently under minimal supervision, be able to deliver results that meet or exceed organization's expectations, be a strong team player, and actively participate in a fast-paced and challenging global environment.

What you'll achieve

• Conduct andparticipate in authorized penetration testing exercises.

• Report on and prioritize issues to vendors, security team, and engineering through standard escalation processes.

• Communicate new developments, breakthroughs, challenges and lessons learned to team members and leadership.

• Collaborate with the development of cybersecurity strategy, policy, standards, and procedures.

• Work with management and senior team memberson how to integrate information security controls into enterprise environmentstocomply with established security standards and policies.

• Continuously upgrade knowledge, skills & awareness in cybersecurity technologies by way of independent research, training, or any other self -improvement methods e.g., (Reading, HTB, CTF competitions)

• Collaborate on additional projects, assignments, and initiatives as required.

Take the first step towards your dream career

Every Dell Technologies team member brings something unique to the table. Here's what we are looking for with this role:

• Minimum of 2 years in Information Security, including at least 1 year of hands-on experience in one or more of the following areas: penetration testing, exploit development, vulnerability research, or fuzzing.
• Bachelor's degree in Computer Science, Computer Engineering, Electrical Engineering, or a related technical field — or equivalent professional experience.
• Cybersecurity Certifications:
  
  Possession of at least one of the following relevant certifications:

eLearnSecurity Certified Professional Penetration Tester (eCPPTv2)

Offensive Security Certified Professional (OSCP)

GIAC Penetration Tester (GPEN) or GIAC Web Application Penetration Tester (GWAPT)

• Intermediate-level knowledge of penetration testing tools and techniques, cyberattack stages, application security standards, and testing methodologies for web applications, APIs, and network/infrastructure.
• Solid understanding of computer networking, operating system internals, and common security threats, vulnerabilities, and risks affecting systems and applications.

Desirable requirements

• Experience writing code in modern programming languages (e.g., C, C++, Java, .NET, Python), with knowledge of debugging principles and the ability to develop custom scripts, exploits, and tools.
• Strong written and verbal communication skills in English, with a customer-oriented mindset and the ability to produce professional security reports and effectively present findings to technical and non-technical stakeholders.

Who we are

We believe that each of us has the power to make an impact. That's why we put our team members at the center of everything we do. If you're looking for an opportunity to grow your career with some of the best minds and most advanced tech in the industry, we're looking for you.

Dell Technologies is a unique family of businesses that helps individuals and organizations transform how they work, live and play. Join us to build a future that works for everyone because Progress Takes All of Us.

Application closing date: 11 September 2025

Dell Technologies is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment.

Job ID:R