79 Senior Penetration Tester jobs in Malaysia

Cyber Security Engineer (Penetration Tester) Cyber Security Engineer (Penetration Tester)

Get AI-powered advice on this job and more exclusive features.

• Conduct cyber security assessments and penetration tests on components including, but not limited to, web & mobile applications, servers, networks, databases and technological devices.
• Provide professional cyber security consultancy and advises.
• Participate and take lead in client projects in delivering cyber security professional services.
• Perform evaluations and conduct cyber security audits in accordance to international standards.
• Prepare detailed findings, reports and remediation plans on security testing results/findings.
• Perform urgent ad-hoc tasks assigned as and when it is required.

Requirements

• Bachelor’s Degree in Cyber Security, Computer Science, IT, System Engineering, or any related field.
• Minimum 1 - 2 years of experience in any forms of cyber security testing, penetration tests or research is an advantage. Fresh graduates are welcome to apply.
• Possessing cyber security professional certification(s) such as CEH, OSCP, GPEN, CPTE or equivalent is an advantage.
• Having sound knowledge and experience in Windows & Linux environments is an advantage.
• Excellent communication skills, organizational skill, multitasking ability and great attention to details.
• Ability to manage multiple tasks and projects with a calm demeanour and work under pressure.
• Strong passion in Cyber Security and stays updated with emerging threats and news.
• Effective "roll up the sleeve" work ethic.

Seniority level

• Seniority level Executive

Employment type

• Employment type Full-time

Job function

• Job function Consulting, Engineering, and Analyst
• Industries IT Services and IT Consulting, Computer and Network Security, and Business Consulting and Services

Referrals increase your chances of interviewing at LGMS Berhad by 2x

Sign in to set job alerts for “Penetration Tester” roles. (June intake) Internship - Cybersecurity (Junior Analyst) (RID-00476)

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 5 days ago

Application Security Engineer (Pentester)

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 3 days ago

Petaling Jaya, Selangor, Malaysia 5 days ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 months ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 4 months ago

Intern, VM and Security Engineering - Cyber Security

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 months ago

Federal Territory of Kuala Lumpur, Malaysia 3 weeks ago

Cybersecurity Engineer, Incident Response

Petaling Jaya, Selangor, Malaysia 4 days ago

Petaling Jaya, Selangor, Malaysia 2 months ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 months ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 4 weeks ago

Internship - Network & Information Security Engineer

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 months ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 weeks ago

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 weeks ago

Petaling Jaya, Selangor, Malaysia 2 months ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 3 days ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 month ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 7 months ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 weeks ago

Petaling Jaya, Selangor, Malaysia 2 months ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 months ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago

Internal Security Analyst (Screening and Investigation)

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 3 months ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 weeks ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

- To perform penetration testing of web applications, API interfaces, mobile apps, source code, and network infrastructure (external & internal).

- To review configurations of hosts and databases.

- To prepare final penetration testing reports and provide detailed remediation guidance for findings.

- To conduct compliance assessments and vulnerability assessments.

- The position is based in Bangsar South for 1 year, post-project end.

Penetration testers should possess excellent computer skills, familiarity with hardware and network equipment, and programming skills to effectively identify vulnerabilities and recommend corrections.

Requirements:

• Certifications: OSCP, OSCE, CPENT, or equivalent.
• Deep knowledge of TCP/IP networking and application protocols.
• Understanding of software exploitation, vulnerabilities, port scanning, vulnerability assessment, and fuzzing tools.
• Knowledge of web technology protocols and OWASP Top 10, SANS 25 vulnerabilities.
• Experience with mobile app security testing and related APIs.
• Proficiency in scripting languages like Python.
• Knowledge of cryptography, security protocols, and penetration testing tools such as Metasploit.
• Understanding hardware exploitation techniques.
• Ability to conduct complex offensive security testing aligned with adversary tactics.
• Strong documentation skills for security issues and impacts.
• Ability to provide guidance on security remediation and collaborate with defensive teams.
• Capability to handle complex issues independently and contribute to process improvements.
• Experience with open-source penetration testing tools and emulating hacker tactics.
• Ability to develop scripts, tools, or methodologies to improve testing processes.

Qualifications:

• Bachelor's degree in computer science, information systems, or equivalent experience.
• Experience with Penetration Testing tools like Burp Suite, Fortify, Metasploit, Wireshark, Kali Linux.
• Minimum 1 year industry experience.
• Knowledge of OWASP Top 10 vulnerabilities.
• Certifications such as OSCP, CREST CPSA, GWAPT, GPEN are advantageous.

- Salary range: RM3000-7000

- Minimum 1 year of experience; training provided.

- Year-end bonus based on performance.

#J-18808-Ljbffr

Join to apply for the Lead - Penetration Tester role at Axiata Digital Labs

4 days ago Be among the first 25 applicants

Join to apply for the Lead - Penetration Tester role at Axiata Digital Labs

Get AI-powered advice on this job and more exclusive features.

Summary:

You will be responsible for managing a team of penetration testers, designing and executing complex security assessments, and ensuring the security posture of critical systems and applications across our organization. You will also serve as a subject matter expert in identifying vulnerabilities, providing remediation strategies, and developing threat modeling.

Summary:

You will be responsible for managing a team of penetration testers, designing and executing complex security assessments, and ensuring the security posture of critical systems and applications across our organization. You will also serve as a subject matter expert in identifying vulnerabilities, providing remediation strategies, and developing threat modeling.

Key Responsibilities:

Strategic & Operational Leadership

• Set the direction and scope of internal and external penetration testing engagements.
• Develop, refine, and maintain the organizations penetration testing methodology.
• Align red team activities with business objectives, risk priorities, and threat intelligence.
  
  
  

Team Management

• Lead, mentor, and coach a team of penetration testers, red teamers, and offensive security analysts.
• Conduct regular 1-on-1s, career development planning, and performance evaluations.
• Build a collaborative and high-performing team culture with continuous skills development.
  
  
  

Planning & Execution Oversight

• Oversee project timelines, resource allocation, and task delegation.
• Ensure timely delivery of assessments and reporting within defined SLAs.
• Manage team workflows using Agile or structured project management frameworks.
  
  
  

Quality Assurance & Reporting

• Review and approve penetration testing reports for clarity, accuracy, and risk relevance.
• Ensure all tests are conducted ethically, legally, and in line with organizational policy.
• Maintain consistency in reporting formats, severity ratings, and risk classifications.
  
  
  

Technical Guidance & Escalation

• Provide hands-on support in complex testing scenarios (e.g., privilege escalation, advanced persistence).
• Serve as the go-to expert in bypassing modern defenses (EDR, WAF, MFA, etc.).
• Troubleshoot and advise during real-time engagements or red/purple team exercises.
  
  
  

Continuous Improvement

• Stay current with threat trends, TTPs (MITRE ATT&CK), and industry frameworks (OWASP, PTES, NIST).
• Recommend new tools, scripts, and techniques to keep the team ahead of emerging threats.
• Introduce automation, playbooks, and reusable exploits to improve testing efficiency.
  
  
  

Training & Development

• Develop internal training modules, labs, and tabletop exercises.
• Support certifications and knowledge-sharing within the team (e.g., OSCP, OSCE, CRTO).
• Organize internal red team simulations, capture-the-flag (CTF) challenges, or lab walkthroughs.
  
  
  

Stakeholder Communication

• Present technical findings and risk assessments clearly to non-technical stakeholders.
• Interface with IT, development, SOC, and compliance teams to coordinate remediation efforts.
• Participate in executive briefings or incident response drills where red team input is required.
  
  
  

Compliance & Documentation

• Ensure testing procedures align with regulatory frameworks (ISO 27001, PCI-DSS, NIST).
• Maintain documentation for all tools, payloads, testing infrastructure, and evidence handling.
• Establish safe testing protocols to avoid disruption or unintentional damage during engagements.
  

Seniority level

• Seniority level Not Applicable

Employment type

• Employment type Full-time

Job function

• Job function Information Technology
• Industries IT Services and IT Consulting

Referrals increase your chances of interviewing at Axiata Digital Labs by 2x

Sign in to set job alerts for “Penetration Tester” roles.

Federal Territory of Kuala Lumpur, Malaysia 3 days ago

Application Security Engineer (Pentester)

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 7 months ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 5 months ago

Cyber Security Engineer (Penetration Tester)

Petaling Jaya, Selangor, Malaysia 5 days ago

Petaling Jaya, Selangor, Malaysia 5 months ago

Internship - Network & Information Security Engineer

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 5 months ago

Jr. Cyber Security Analyst (Fresh Graduate)

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 5 hours ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 4 days ago

Petaling Jaya, Selangor, Malaysia 5 months ago

Petaling Jaya, Selangor, Malaysia 1 hour ago

Security Operations Center Analyst (SOC Analyst)

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 3 weeks ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 weeks ago

Federal Territory of Kuala Lumpur, Malaysia 3 weeks ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 months ago

Blockchain Security Technical Support Engineer

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 5 hours ago

Federal Territory of Kuala Lumpur, Malaysia 4 weeks ago

Cyber Security Engineer (Compliance & Audit)

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 weeks ago

Petaling Jaya, Selangor, Malaysia 5 months ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 5 months ago

Federal Territory of Kuala Lumpur, Malaysia 4 days ago

Federal Territory of Kuala Lumpur, Malaysia 10 hours ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 6 hours ago

Information Security Engineering Specialist

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 weeks ago

Information security Engineering specialist

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 6 days ago

Information security engineering specialist (Offensive Security Specialist)

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 3 hours ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

Join to apply for the

Lead - Penetration Tester

role at

Axiata Digital Labs 4 days ago Be among the first 25 applicants Join to apply for the

Lead - Penetration Tester

role at

Axiata Digital Labs Get AI-powered advice on this job and more exclusive features. Summary:

You will be responsible for managing a team of penetration testers, designing and executing complex security assessments, and ensuring the security posture of critical systems and applications across our organization. You will also serve as a subject matter expert in identifying vulnerabilities, providing remediation strategies, and developing threat modeling. Summary:

You will be responsible for managing a team of penetration testers, designing and executing complex security assessments, and ensuring the security posture of critical systems and applications across our organization. You will also serve as a subject matter expert in identifying vulnerabilities, providing remediation strategies, and developing threat modeling.

Key Responsibilities:

Strategic & Operational Leadership

Set the direction and scope of internal and external penetration testing engagements. Develop, refine, and maintain the organizations penetration testing methodology. Align red team activities with business objectives, risk priorities, and threat intelligence.

Team Management

Lead, mentor, and coach a team of penetration testers, red teamers, and offensive security analysts. Conduct regular 1-on-1s, career development planning, and performance evaluations. Build a collaborative and high-performing team culture with continuous skills development.

Planning & Execution Oversight

Oversee project timelines, resource allocation, and task delegation. Ensure timely delivery of assessments and reporting within defined SLAs. Manage team workflows using Agile or structured project management frameworks.

Quality Assurance & Reporting

Review and approve penetration testing reports for clarity, accuracy, and risk relevance. Ensure all tests are conducted ethically, legally, and in line with organizational policy. Maintain consistency in reporting formats, severity ratings, and risk classifications.

Technical Guidance & Escalation

Provide hands-on support in complex testing scenarios (e.g., privilege escalation, advanced persistence). Serve as the go-to expert in bypassing modern defenses (EDR, WAF, MFA, etc.). Troubleshoot and advise during real-time engagements or red/purple team exercises.

Continuous Improvement

Stay current with threat trends, TTPs (MITRE ATT&CK), and industry frameworks (OWASP, PTES, NIST). Recommend new tools, scripts, and techniques to keep the team ahead of emerging threats. Introduce automation, playbooks, and reusable exploits to improve testing efficiency.

Training & Development

Develop internal training modules, labs, and tabletop exercises. Support certifications and knowledge-sharing within the team (e.g., OSCP, OSCE, CRTO). Organize internal red team simulations, capture-the-flag (CTF) challenges, or lab walkthroughs.

Stakeholder Communication

Present technical findings and risk assessments clearly to non-technical stakeholders. Interface with IT, development, SOC, and compliance teams to coordinate remediation efforts. Participate in executive briefings or incident response drills where red team input is required.

Compliance & Documentation

Ensure testing procedures align with regulatory frameworks (ISO 27001, PCI-DSS, NIST). Maintain documentation for all tools, payloads, testing infrastructure, and evidence handling. Establish safe testing protocols to avoid disruption or unintentional damage during engagements.

Seniority level

Seniority level Not Applicable Employment type

Employment type Full-time Job function

Job function Information Technology Industries IT Services and IT Consulting Referrals increase your chances of interviewing at Axiata Digital Labs by 2x Sign in to set job alerts for “Penetration Tester” roles.

Federal Territory of Kuala Lumpur, Malaysia 3 days ago Application Security Engineer (Pentester)

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 7 months ago Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 5 months ago Cyber Security Engineer (Penetration Tester)

Petaling Jaya, Selangor, Malaysia 5 days ago Petaling Jaya, Selangor, Malaysia 5 months ago Internship - Network & Information Security Engineer

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 5 months ago Jr. Cyber Security Analyst (Fresh Graduate)

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 5 hours ago Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 4 days ago Petaling Jaya, Selangor, Malaysia 5 months ago Petaling Jaya, Selangor, Malaysia 1 hour ago Security Operations Center Analyst (SOC Analyst)

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 3 weeks ago Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 weeks ago Federal Territory of Kuala Lumpur, Malaysia 3 weeks ago Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 months ago Blockchain Security Technical Support Engineer

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 5 hours ago Federal Territory of Kuala Lumpur, Malaysia 4 weeks ago Cyber Security Engineer (Compliance & Audit)

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 weeks ago Petaling Jaya, Selangor, Malaysia 5 months ago Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 5 months ago Federal Territory of Kuala Lumpur, Malaysia 4 days ago Federal Territory of Kuala Lumpur, Malaysia 10 hours ago Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 6 hours ago Information Security Engineering Specialist

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 weeks ago Information security Engineering specialist

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 6 days ago Information security engineering specialist (Offensive Security Specialist)

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 3 hours ago We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

Join to apply for the Senior Security Penetration Tester role at BAE Systems Digital Intelligence

3 days ago Be among the first 25 applicants

Join to apply for the Senior Security Penetration Tester role at BAE Systems Digital Intelligence

Location(s): Asia-Pacific & Middle East : Malaysia : Kuala Lumpur

BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments.

About Us

Our mission at BAE Systems Digital Intelligence is to collect, connect and understand complex data, so that our customers can unlock digital advantage in the most demanding environments.

At our Malaysian Global Delivery Centre, we work with clients from around the world to deliver cyber technical services to support our customers in keeping their systems secure in today’s hostile digital world.

As a Senior Penetration Tester, you will perform comprehensive penetration testing assessments across a wide range of sectors and produce comprehensive written reports to meet high industry standards. Beyond the testing itself, you will be involved in client pre-engagement processes, contributing to scoping tasks and drafting proposals.

This position is part of our global Cyber Technical Services team, which includes adjacent areas such as Threat Intelligence and SOC Consulting.

Your Role Will Involve

• Delivery of end-to-end security testing engagements, including scoping and client wash-up meetings.
• Performing a wide range of security testing types such as web application, infrastructure and objective based/red teaming.
• Production of detailed reporting and presentations for both technical and non-technical stakeholders.
• Safe and responsible use of testing tools, ensuring controls are in place to limit risks during customer engagements.
• Developing improvements in terms of scripts, tools, or techniques to enhance the Security Testing team's capabilities.
• Maintaining an up-to-date knowledge of information security issues, continuously learning about new technologies, methodologies, and techniques.
• Knowledge sharing with colleagues in other teams, such as Threat Intelligence, Incident Response, and the wider Security Consulting community.
• Assist and support team members in troubleshooting complex technical issues, reviewing vulnerability findings, and validating penetration test results to uphold high standards of accuracy, consistency, and reporting quality.
  
  

Role Requirements

• We are looking for those with a passion for cybersecurity. Those who contribute to cybersecurity related blogs, engage in vulnerability research/bug bounties or other community related events will be looked at favourably
• Experience in common offensive penetration testing domains such as testing of web applications, infrastructure and red teaming. Experience with wireless and mobile testing also an advantage.
• Evidenced skills through industry recognised certifications such OSCP, CREST or CRTO
• Confident communicator with excellent spoken and written English communication skills
• Experience using common industry tools such as Kali Linux, Nessus & Burpsuite
  
  

Desirable

• Knowledge of C2 frameworks such as Cobalt Strike
• Threat hunting or compromised assessment experience
  
  

What We Offer

• You’ll have a dedicated line Manager to help you develop your career and guide you on your journey through BAE Systems Digital Intelligence
• We will support your personal training and development in the areas of cybersecurity by sponsoring training courses and certification exams (i.e OSCP, CREST, CRTO)
• Work-life balance is important; you’ll get 18 days holiday a year (increases to 21 after 5 years’ service)
• We support hybrid working and give flexibility for teams to decide on the balance between remote and office-based working
• Our benefits package includes private family medical cover, maternity (4 months), paternity (2 weeks), study leave & a Optical/Dental/Health screening allowance
• You’ll be part of our annual bonus and share award scheme
  
  

Life at BAE Systems Digital Intelligence

We are embracing Hybrid Working. This means you and your colleagues may be working in different locations, such as from home, another BAE Systems office or client site, some or all of the time, and work might be going on at different times of the day.

By embracing technology, we can interact, collaborate and create together, even when we’re working remotely from one another. Hybrid Working allows for increased flexibility in when and where we work, helping us to balance our work and personal life more effectively, and enhance well-being.

Diversity and inclusion are integral to the success of BAE Systems Digital Intelligence. We are proud to have an organisational culture where employees with varying perspectives, skills, life experiences and backgrounds – the best and brightest minds – can work together to achieve excellence and realise individual and organisational potential.

Seniority level

• Seniority level Mid-Senior level

Employment type

• Employment type Full-time

Job function

• Job function Information Technology
• Industries IT Services and IT Consulting

Referrals increase your chances of interviewing at BAE Systems Digital Intelligence by 2x

Sign in to set job alerts for “Penetration Tester” roles.

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 day ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 8 months ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 6 months ago

Cyber Security Engineer (Penetration Tester)

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 4 weeks ago

Petaling Jaya, Selangor, Malaysia 6 days ago

Petaling Jaya, Selangor, Malaysia 6 months ago

Petaling Jaya, Selangor, Malaysia 1 month ago

Petaling Jaya, Selangor, Malaysia 1 month ago

Internship - Network & Information Security Engineer

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 6 months ago

Petaling Jaya, Selangor, Malaysia 3 days ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago

Petaling Jaya, Selangor, Malaysia 6 months ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 month ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 day ago

Petaling Jaya, Selangor, Malaysia 2 days ago

Security Operations Center Analyst (SOC Analyst)

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 weeks ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 4 hours ago

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 days ago

Federal Territory of Kuala Lumpur, Malaysia 2 weeks ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 months ago

Wilayah Persekutuan Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 day ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 6 months ago

Petaling Jaya, Selangor, Malaysia 6 months ago

Federal Territory of Kuala Lumpur, Malaysia 1 day ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

Location(s):Asia-Pacific & Middle East : Malaysia : Kuala Lumpur

BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments.

About Us

Our mission at BAE Systems Digital Intelligence is to collect, connect and understand complex data, so that our customers can unlock digital advantage in the most demanding environments.

At our Malaysian Global Delivery Centre, we work with clients from around the world to deliver cyber technical services to support our customers in keeping their systems secure in today’s hostile digital world.

As a Senior Penetration Tester, you will perform comprehensive penetration testing assessments across a wide range of sectors and produce comprehensive written reports to meet high industry standards. Beyond the testing itself, you will be involved in client pre-engagement processes, contributing to scoping tasks and drafting proposals.

This position is part of our global Cyber Technical Services team, which includes adjacent areas such as Threat Intelligence and SOC Consulting.

Your role will involve:

• Delivery of end-to-end security testing engagements, including scoping and client wash-up meetings.

• Performing a wide range of security testing types such as web application, infrastructure and objective based/red teaming.

• Production of detailed reporting and presentations for both technical and non-technical stakeholders.

• Safe and responsible use of testing tools, ensuring controls are in place to limit risks during customer engagements.

• Developing improvements in terms of scripts, tools, or techniques to enhance the Security Testing team's capabilities.

• Maintaining an up-to-date knowledge of information security issues, continuously learning about new technologies, methodologies, and techniques.

• Knowledge sharing with colleagues in other teams, such as Threat Intelligence, Incident Response, and the wider Security Consulting community.

• Assist and support team members in troubleshooting complex technical issues, reviewing vulnerability findings, and validating penetration test results to uphold high standards of accuracy, consistency, and reporting quality.

Role requirements

• We are looking for those with a passion for cybersecurity. Those who contribute to cybersecurity related blogs, engage in vulnerability research/bug bounties or other community related events will be looked at favourably

• Experience in common offensive penetration testing domains such as testing of web applications, infrastructure and red teaming. Experience with wireless and mobile testing also an advantage.

• Evidenced skills through industry recognised certifications such OSCP, CREST or CRTO

• Confident communicator with excellent spoken and written English communication skills

• Experience using common industry tools such as Kali Linux, Nessus & Burpsuite

Desirable

• Knowledge of C2 frameworks such as Cobalt Strike

• Threat hunting or compromised assessment experience

What We Offer

• You’ll have a dedicated line Manager to help you develop your career and guide you on your journey through BAE Systems Digital Intelligence

• We will support your personal training and development in the areas of cybersecurity by sponsoring training courses and certification exams (i.e OSCP, CREST, CRTO)

• Work-life balance is important; you’ll get 18 days holiday a year (increases to 21 after 5 years’ service)

• We support hybrid working and give flexibility for teams to decide on the balance between remote and office-based working

• Our benefits package includes private family medical cover, maternity (4 months), paternity (2 weeks), study leave & a Optical/Dental/Health screening allowance

• You’ll be part of our annual bonus and share award scheme

Life at BAE Systems Digital Intelligence

We are embracing Hybrid Working. This means you and your colleagues may be working in different locations, such as from home, another BAE Systems office or client site, some or all of the time, and work might be going on at different times of the day.

By embracing technology, we can interact, collaborate and create together, even when we’re working remotely from one another. Hybrid Working allows for increased flexibility in when and where we work, helping us to balance our work and personal life more effectively, and enhance well-being.

Diversity and inclusion are integral to the success of BAE Systems Digital Intelligence. We are proud to have an organisational culture where employees with varying perspectives, skills, life experiences and backgrounds – the best and brightest minds – can work together to achieve excellence and realise individual and organisational potential.

#J-18808-Ljbffr

Location(s):Asia-Pacific & Middle East : Malaysia : Kuala Lumpur

BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments.

About Us

Our mission at BAE Systems Digital Intelligence is to collect, connect and understand complex data, so that our customers can unlock digital advantage in the most demanding environments.

At our Malaysian Global Delivery Centre, we work with clients from around the world to deliver cyber technical services to support our customers in keeping their systems secure in today’s hostile digital world.

As a Senior Penetration Tester, you will perform comprehensive penetration testing assessments across a wide range of sectors and produce comprehensive written reports to meet high industry standards. Beyond the testing itself, you will be involved in client pre-engagement processes, contributing to scoping tasks and drafting proposals.

This position is part of our global Cyber Technical Services team, which includes adjacent areas such as Threat Intelligence and SOC Consulting.

Your role will involve:

• Delivery of end-to-end security testing engagements, including scoping and client wash-up meetings.

• Performing a wide range of security testing types such as web application, infrastructure and objective based/red teaming.

• Production of detailed reporting and presentations for both technical and non-technical stakeholders.

• Safe and responsible use of testing tools, ensuring controls are in place to limit risks during customer engagements.

• Developing improvements in terms of scripts, tools, or techniques to enhance the Security Testing team's capabilities.

• Maintaining an up-to-date knowledge of information security issues, continuously learning about new technologies, methodologies, and techniques.

• Knowledge sharing with colleagues in other teams, such as Threat Intelligence, Incident Response, and the wider Security Consulting community.

• Assist and support team members in troubleshooting complex technical issues, reviewing vulnerability findings, and validating penetration test results to uphold high standards of accuracy, consistency, and reporting quality.

Role requirements

• We are looking for those with a passion for cybersecurity. Those who contribute to cybersecurity related blogs, engage in vulnerability research/bug bounties or other community related events will be looked at favourably

• Experience in common offensive penetration testing domains such as testing of web applications, infrastructure and red teaming. Experience with wireless and mobile testing also an advantage.

• Evidenced skills through industry recognised certifications such OSCP, CREST or CRTO

• Confident communicator with excellent spoken and written English communication skills

• Experience using common industry tools such as Kali Linux, Nessus & Burpsuite

Desirable

• Knowledge of C2 frameworks such as Cobalt Strike

• Threat hunting or compromised assessment experience

What We Offer

• You’ll have a dedicated line Manager to help you develop your career and guide you on your journey through BAE Systems Digital Intelligence

• We will support your personal training and development in the areas of cybersecurity by sponsoring training courses and certification exams (i.e OSCP, CREST, CRTO)

• Work-life balance is important; you’ll get 18 days holiday a year (increases to 21 after 5 years’ service)

• We support hybrid working and give flexibility for teams to decide on the balance between remote and office-based working

• Our benefits package includes private family medical cover, maternity (4 months), paternity (2 weeks), study leave & a Optical/Dental/Health screening allowance

• You’ll be part of our annual bonus and share award scheme

Life at BAE Systems Digital Intelligence

We are embracing Hybrid Working. This means you and your colleagues may be working in different locations, such as from home, another BAE Systems office or client site, some or all of the time, and work might be going on at different times of the day.

By embracing technology, we can interact, collaborate and create together, even when we’re working remotely from one another. Hybrid Working allows for increased flexibility in when and where we work, helping us to balance our work and personal life more effectively, and enhance well-being.

Diversity and inclusion are integral to the success of BAE Systems Digital Intelligence. We are proud to have an organisational culture where employees with varying perspectives, skills, life experiences and backgrounds – the best and brightest minds – can work together to achieve excellence and realise individual and organisational potential.

#J-18808-Ljbffr

Location(s):Asia-Pacific & Middle East : Malaysia : Kuala Lumpur BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments. About Us Our mission at BAE Systems Digital Intelligence is to collect, connect and understand complex data, so that our customers can unlock digital advantage in the most demanding environments. At our Malaysian Global Delivery Centre, we work with clients from around the world to deliver cyber technical services to support our customers in keeping their systems secure in today’s hostile digital world. As a Senior Penetration Tester, you will perform comprehensive penetration testing assessments across a wide range of sectors and produce comprehensive written reports to meet high industry standards. Beyond the testing itself, you will be involved in client pre-engagement processes, contributing to scoping tasks and drafting proposals. This position is part of our global Cyber Technical Services team, which includes adjacent areas such as Threat Intelligence and SOC Consulting. Your role will involve: Delivery of end-to-end security testing engagements, including scoping and client wash-up meetings. Performing a wide range of security testing types such as web application, infrastructure and objective based/red teaming. Production of detailed reporting and presentations for both technical and non-technical stakeholders. Safe and responsible use of testing tools, ensuring controls are in place to limit risks during customer engagements. Developing improvements in terms of scripts, tools, or techniques to enhance the Security Testing team's capabilities. Maintaining an up-to-date knowledge of information security issues, continuously learning about new technologies, methodologies, and techniques. Knowledge sharing with colleagues in other teams, such as Threat Intelligence, Incident Response, and the wider Security Consulting community. Assist and support team members in troubleshooting complex technical issues, reviewing vulnerability findings, and validating penetration test results to uphold high standards of accuracy, consistency, and reporting quality. Role requirements We are looking for those with a passion for cybersecurity. Those who contribute to cybersecurity related blogs, engage in vulnerability research/bug bounties or other community related events will be looked at favourably Experience in common offensive penetration testing domains such as testing of web applications, infrastructure and red teaming. Experience with wireless and mobile testing also an advantage. Evidenced skills through industry recognised certifications such OSCP, CREST or CRTO Confident communicator with excellent spoken and written English communication skills Experience using common industry tools such as Kali Linux, Nessus & Burpsuite Desirable Knowledge of C2 frameworks such as Cobalt Strike Threat hunting or compromised assessment experience What We Offer You’ll have a dedicated line Manager to help you develop your career and guide you on your journey through BAE Systems Digital Intelligence We will support your personal training and development in the areas of cybersecurity by sponsoring training courses and certification exams (i.e OSCP, CREST, CRTO) Work-life balance is important; you’ll get 18 days holiday a year (increases to 21 after 5 years’ service) We support hybrid working and give flexibility for teams to decide on the balance between remote and office-based working Our benefits package includes private family medical cover, maternity (4 months), paternity (2 weeks), study leave & a Optical/Dental/Health screening allowance You’ll be part of our annual bonus and share award scheme Life at BAE Systems Digital Intelligence We are embracing Hybrid Working. This means you and your colleagues may be working in different locations, such as from home, another BAE Systems office or client site, some or all of the time, and work might be going on at different times of the day. By embracing technology, we can interact, collaborate and create together, even when we’re working remotely from one another. Hybrid Working allows for increased flexibility in when and where we work, helping us to balance our work and personal life more effectively, and enhance well-being. Diversity and inclusion are integral to the success of BAE Systems Digital Intelligence. We are proud to have an organisational culture where employees with varying perspectives, skills, life experiences and backgrounds – the best and brightest minds – can work together to achieve excellence and realise individual and organisational potential.

#J-18808-Ljbffr

Join to apply for the

Senior Security Penetration Tester

role at

BAE Systems Digital Intelligence 3 days ago Be among the first 25 applicants Join to apply for the

Senior Security Penetration Tester

role at

BAE Systems Digital Intelligence Location(s): Asia-Pacific & Middle East : Malaysia : Kuala Lumpur

BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments.

About Us

Our mission at BAE Systems Digital Intelligence is to collect, connect and understand complex data, so that our customers can unlock digital advantage in the most demanding environments.

At our Malaysian Global Delivery Centre, we work with clients from around the world to deliver cyber technical services to support our customers in keeping their systems secure in today’s hostile digital world.

As a Senior Penetration Tester, you will perform comprehensive penetration testing assessments across a wide range of sectors and produce comprehensive written reports to meet high industry standards. Beyond the testing itself, you will be involved in client pre-engagement processes, contributing to scoping tasks and drafting proposals.

This position is part of our global Cyber Technical Services team, which includes adjacent areas such as Threat Intelligence and SOC Consulting.

Your Role Will Involve

Delivery of end-to-end security testing engagements, including scoping and client wash-up meetings. Performing a wide range of security testing types such as web application, infrastructure and objective based/red teaming. Production of detailed reporting and presentations for both technical and non-technical stakeholders. Safe and responsible use of testing tools, ensuring controls are in place to limit risks during customer engagements. Developing improvements in terms of scripts, tools, or techniques to enhance the Security Testing team's capabilities. Maintaining an up-to-date knowledge of information security issues, continuously learning about new technologies, methodologies, and techniques. Knowledge sharing with colleagues in other teams, such as Threat Intelligence, Incident Response, and the wider Security Consulting community. Assist and support team members in troubleshooting complex technical issues, reviewing vulnerability findings, and validating penetration test results to uphold high standards of accuracy, consistency, and reporting quality.

Role Requirements

We are looking for those with a passion for cybersecurity. Those who contribute to cybersecurity related blogs, engage in vulnerability research/bug bounties or other community related events will be looked at favourably Experience in common offensive penetration testing domains such as testing of web applications, infrastructure and red teaming. Experience with wireless and mobile testing also an advantage. Evidenced skills through industry recognised certifications such OSCP, CREST or CRTO Confident communicator with excellent spoken and written English communication skills Experience using common industry tools such as Kali Linux, Nessus & Burpsuite

Desirable

Knowledge of C2 frameworks such as Cobalt Strike Threat hunting or compromised assessment experience

What We Offer

You’ll have a dedicated line Manager to help you develop your career and guide you on your journey through BAE Systems Digital Intelligence We will support your personal training and development in the areas of cybersecurity by sponsoring training courses and certification exams (i.e OSCP, CREST, CRTO) Work-life balance is important; you’ll get 18 days holiday a year (increases to 21 after 5 years’ service) We support hybrid working and give flexibility for teams to decide on the balance between remote and office-based working Our benefits package includes private family medical cover, maternity (4 months), paternity (2 weeks), study leave & a Optical/Dental/Health screening allowance You’ll be part of our annual bonus and share award scheme

Life at BAE Systems Digital Intelligence

We are embracing Hybrid Working. This means you and your colleagues may be working in different locations, such as from home, another BAE Systems office or client site, some or all of the time, and work might be going on at different times of the day.

By embracing technology, we can interact, collaborate and create together, even when we’re working remotely from one another. Hybrid Working allows for increased flexibility in when and where we work, helping us to balance our work and personal life more effectively, and enhance well-being.

Diversity and inclusion are integral to the success of BAE Systems Digital Intelligence. We are proud to have an organisational culture where employees with varying perspectives, skills, life experiences and backgrounds – the best and brightest minds – can work together to achieve excellence and realise individual and organisational potential. Seniority level

Seniority level Mid-Senior level Employment type

Employment type Full-time Job function

Job function Information Technology Industries IT Services and IT Consulting Referrals increase your chances of interviewing at BAE Systems Digital Intelligence by 2x Sign in to set job alerts for “Penetration Tester” roles.

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 day ago Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 8 months ago Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 6 months ago Cyber Security Engineer (Penetration Tester)

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 4 weeks ago Petaling Jaya, Selangor, Malaysia 6 days ago Petaling Jaya, Selangor, Malaysia 6 months ago Petaling Jaya, Selangor, Malaysia 1 month ago Petaling Jaya, Selangor, Malaysia 1 month ago Internship - Network & Information Security Engineer

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 6 months ago Petaling Jaya, Selangor, Malaysia 3 days ago Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago Petaling Jaya, Selangor, Malaysia 6 months ago Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 month ago Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 day ago Petaling Jaya, Selangor, Malaysia 2 days ago Security Operations Center Analyst (SOC Analyst)

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 weeks ago Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 4 hours ago WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 days ago Federal Territory of Kuala Lumpur, Malaysia 2 weeks ago Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 months ago Wilayah Persekutuan Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 day ago Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 6 months ago Petaling Jaya, Selangor, Malaysia 6 months ago Federal Territory of Kuala Lumpur, Malaysia 1 day ago We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr