Zero Tax Jobs Logo
Post a Job
Company logo hidden

Penetration Testing and Red Teaming Lead

Unlock employer Riyadh, Saudi Arabia Posted: 16 Dec 2025

Apply Direct

Financial

  • Estimate: $100k - $150k*
  • Zero income tax location

Accessibility

  • Office Only
  • Apply from abroad
  • Visa Provided

Requirements

  • Experience: Senior
  • English: Professional
Explore similar roles:
View Security Analyst jobs in Riyadh View all Security Analyst jobs

Position

This role is responsible for leading, maturing, and executing the organization's offensive security and proactive defense programs, primarily encompassing Penetration Testing, Red Teaming, Vulnerability Management, and Secure Software Development Lifecycle (S-SDLC). The successful candidate will be the subject matter expert in securing applications, infrastructure, and cloud environments, acting as a crucial bridge between security, development, and IT operations to implement a DevSecOps model.

Ready to apply for roles like this?

Unlock the company name and direct application link. Subscribers get instant access to fresh jobs across Dubai, Abu Dhabi and Riyadh, many with visa support.

Unlock employer & apply directly

Key Areas of Responsibility

  • Program Leadership: Develop and execute the organization's penetration testing and red teaming exercises across all critical assets.
  • Vulnerability Management: Own the full vulnerability lifecycle, prioritizing remediation based on business risk and impact.
  • Application Security (AppSec): Define and implement secure code review (SAST/DAST) processes and integrate security into the CI/CD pipeline.
  • Architecture & Design: Provide expert security assurance on new system designs, ensuring adherence to secure architecture patterns (e.g., Zero Trust).

Candidate Qualifications

  • Proven experience in developing, managing, and executing a formal Penetration Testing and Red Teaming program. Extensive hands-on experience in conducting advanced, targeted penetration tests against various environments (web, mobile, cloud, API).
  • Demonstrated expertise in operating and optimizing Vulnerability Management tools (e.g., Qualys, Nessus) and implementing a risk-based prioritization approach.
  • Strong background in Secure Software Development Lifecycle (S-SDLC) implementation and integrating security practices into CI/CD pipelines (DevSecOps).

Experience

  • Experience with managing and configuring Static/Dynamic Application Security Testing (SAST/DAST) tools.
  • Experience with Threat Modeling methodologies for new applications and features.
  • Deep understanding of security frameworks such as OWASP Top 10, MITRE ATT&CK, and SAMA CSF (or similar financial/regulatory frameworks).
  • Knowledge of Zero Trust architecture, defense-in-depth principles, and cloud security best practices (OCI/Azure/GCP).

Skills

  • DevSecOps integration for security automation and speed.
  • Penetration testing expertise to validate defenses.
  • Security architecture design for resilient systems.
  • Threat Modeling, S-SDLC Implementation, Zero Trust, Security Standards Development.
Apply Direct

Jobs you might like   View all jobs

About Financial Services Company

Company details are hidden. Subscribe to view full company profile.
Learn more

Related Articles

Software Engineer Salaries in Dubai, UAE - An Ultimate Guide cover image

Software Engineer Salaries in Dubai, UAE - An Ultimate Guide

 How to Get a Visa as a Software Engineer in Dubai cover image

How to Get a Visa as a Software Engineer in Dubai

 Perks for Software Developers in Dubai and the UAE cover image

Perks for Software Developers in Dubai and the UAE

Ready to apply for this role?

Apply Direct