[Hiring] Senior Security Engineer @Tekhqs

Role Description

We are seeking a highly skilled Senior Security Engineer with 6+ years of hands-on experience in offensive security. The ideal candidate will be responsible for identifying, exploiting, and reporting security vulnerabilities across applications, networks, and infrastructure to proactively strengthen the organization's security posture. This role requires deep technical expertise, strong analytical skills, and the ability to simulate real-world cyberattacks while providing actionable remediation strategies.

• Lead and execute web, mobile, API, and network penetration testing engagements
• Perform advanced vulnerability assessments, including manual and automated testing techniques
• Identify, exploit, and validate security vulnerabilities across systems and applications
• Conduct red team exercises and adversary simulations to assess defensive capabilities
• Evaluate security posture against standards such as OWASP Top 10, SANS Top 25, and MITRE ATT&CK framework
• Perform secure code reviews and assist in identifying flaws in application logic and architecture
• Collaborate with development and DevOps teams to ensure secure SDLC implementation
• Provide detailed technical reports, including risk ratings, proof-of-concept (PoC), and remediation guidance
• Support security audits, compliance assessments, and risk management initiatives
• Mentor junior security engineers and contribute to knowledge sharing within the team
• Stay updated with the latest vulnerabilities, exploits, and threat intelligence trends

Qualifications

• 6+ years of experience in penetration testing / ethical hacking / offensive security
• Strong expertise in OWASP Top 10 vulnerabilities and remediation techniques
• Hands-on experience with tools such as Burp Suite (Pro preferred), Metasploit Framework, Nmap, Nessus, Wireshark, Nikto, SQLmap, etc.
• Deep understanding of web application security (authentication, session management, APIs)
• Network protocols and security architecture
• Operating systems (Linux/Windows hardening & exploitation)
• Experience with manual testing techniques beyond automated scanners
• Familiarity with cloud security (AWS/Azure/GCP) is a plus
• Knowledge of scripting/programming (Python, Bash, or PowerShell) for automation
• Understanding of security testing methodologies (Black-box, White-box, Grey-box testing)

Requirements

• Certifications (Preferred): OSCP (Offensive Security Certified Professional) – Highly preferred
• CEH, eCPPT, GPEN, or similar certification

Job Details

• Location: Lahore/Islamabad/Karachi (Remote)
• Experience: 7+ Years
• Department: Network Security & Penetration Tester

Company Description

TEKHQS is a global technology solutions provider headquartered in Lake Forest, California, with a 300+ expert team in Pakistan. We specialize in ERP (SAP S/4HANA, Oracle NetSuite, Microsoft Dynamics 365), AI/ML, Blockchain, Cloud, and Staff Augmentation services. Join us to drive business growth and work on cutting-edge global IT projects with hands-on mentorship and a clear career path.