Offensive Security Intern

The internship opportunity at the company in the Offensive Security Team provides students with the chance to learn and work with enterprise security technologies. Interns will support customers by identifying vulnerabilities and strengthening their security posture through controlled testing and assessments. This internship will offer hands-on experience with the tools, techniques, and methodologies used by the offensive security team to simulate real-world cyber threats.

Responsibilities:

• Collaborate with the current team on understanding the Vulnerability Assessment and Penetration Testing (VAPT) process.
• Assist in performing basic vulnerability assessments and ongoing penetration testing activities.
• Support the team in identifying, validating, and documenting security vulnerabilities.
• Help with reconnaissance and information gathering activities under guidance.
• Work with internal teams to understand findings and support remediation discussions.
• Actively participate in labs, simulations, and internal exercises to build offensive security skills.
• Complete training on at least 3 offensive security tools/areas (e.g., Burp Suite, Metasploit, Nmap, OWASP Top 10) and aim to achieve relevant certifications.
• Assist in preparing reports, project documentation, POCs, and internal knowledge-sharing materials.

Qualifications & Skills:

• Pursuing or recently completed a Bachelor's in Computer Science, Cybersecurity, or a related field; specialization or coursework in offensive security, penetration testing, or ethical hacking is preferred.
• Solid understanding of TCP/IP, OSI model, common protocols (HTTP/S, DNS, SMB, SSH), and basic network troubleshooting.
• Working knowledge of Linux (Kali, Parrot, or Ubuntu) command line and scripting fundamentals in Python or Bash.
• Familiarity with offensive security concepts: reconnaissance, vulnerability scanning, exploitation basics, and the MITRE ATT&CK framework.
• Exposure to common tools is a plus: Nmap, Burp Suite, Wireshark, Metasploit, or similar.
• Hands-on practice via platforms such as Hack The Box, TryHackMe, PortSwigger Web Security Academy, or CTF participation is highly desirable.
• Offensive security certifications are a strong plus: OSCP/OSCP+ (highly preferred), PNPT, CRTP, eCPPT, or eJPT; candidates actively pursuing OSCP+ are particularly encouraged to apply.
• Understanding of OWASP Top 10 and basic web application security concepts.
• Strong written and verbal communication skills in English; proficiency in Arabic is an advantage.
• Comfortable with Microsoft Office (Word, Excel, PowerPoint) for reporting and deliverables.
• Curiosity, integrity, and a documented learning trail (GitHub, write-ups, blog, HTB profile) are valued.
• Flexible working hours during active engagements; willingness to learn client-facing professionalism.

Benefits:

• Career progression and growth through challenging projects.
• Employee engagement and wellness campaigns throughout the year.
• Excellent learning and development opportunities.
• Inclusive and diverse working environment.
• Flexible/Hybrid working environment.
• Open door policy.

About Us:
The company is the cyber security arm of e& enterprise, providing leading enterprise businesses across the Middle East with strategic consultancy and tailored information security solutions. Founded in 2004 and strategically acquired by the Etisalat group in February 2020, the company has established itself as the region's trusted IT security advisor by remaining vendor-agnostic and focused on cybersecurity. The company delivers unmatched value to its customers by strengthening their cyber defenses and safeguarding their business.