Senior Penetration Testing

Overview Dvuln is hiring an elite operator to join our offensive security team as a Senior Penetration Testing & Offensive Security Lead. This is not a role for someone seeking routine testing work. We are looking for a senior practitioner with a demonstrated ability to lead complex red team operations, drive operational efficiency, and deliver adversary-grade outcomes across enterprise and government environments. Responsibilities This is a dual-focus role combining technical depth with operational oversight. You will: Lead and execute advanced penetration tests, red team engagements, and threat emulations against some of the most hardened environments in the country. Provide technical mentorship and leadership across a team of highly capable offensive security consultants. Oversee operational planning including test scheduling, scope alignment, resource tracking, and delivery governance across concurrent projects. Strong working knowledge of enterprise environments including Microsoft 365, Azure, AWS, GCP, and hybrid identity architectures Perform targeted code reviews as part of broader application security engagements. Work closely with the Director of Offensive Security and Client Delivery leads to ensure engagements run on time, within scope, and to the highest technical standard. Serve as a senior escalation point during engagements and provide guidance during high-pressure scenarios. Maintain readiness for special projects requiring flexible response capability, including nation-state simulation, APT toolset deployment, and covert access validation. Qualifications 5+ years of experience in offensive security, including complex penetration testing, red teaming, or adversary simulation Demonstrated experience running or overseeing operational aspects of multiple concurrent engagements Proven experience leading technical teams or mentoring offensive security talent Proficiency across modern attack chains: initial access, privilege escalation, lateral movement, evasion, and objective execution Familiarity with TTPs aligned to MITRE ATT&CK, including custom tool usage and OPSEC-aware testing Experience performing red team operations in environments with various tool coverage (e.g., CrowdStrike, Cloudflare, Okta, Intune, Microsoft Sentinel etc.) Strong technical report writing and client communication skills Capability to work independently while coordinating across distributed delivery teams Manage the day-to-day performance, wellbeing, and development of team members to ensure delivery quality and career progression are actively supported. Ability to context-switch between hands-on technical execution and project tracking without degradation in either Bonus Points Experience in regulated environments (e.g. APRA CPS 234, ISM etc) Familiarity with DevSecOps pipelines and CI/CD exploitation Why Dvuln Dvuln is not a services body shop. We are a boutique offensive security company with a global footprint, delivering high-stakes outcomes for governments, banks, critical infrastructure, and software giants. Our team includes former adversaries, APT simulators, and cybercrime specialists now working on the side of defence. You will not be bored, you will not be micromanaged, and you will be expected to operate at your peak. Apply If you’re capable of running advanced offensive operations while ensuring projects don’t slip, and you thrive in environments where only impact matters - get in touch. Job details Seniority level: Mid-Senior level Employment type: Full-time Job function: Information Technology Industries: Computer and Network Security #J-18808-Ljbffr