Back to jobs

Senior Penetration Tester

Taipei, Taiwan

About the Role
We are looking for a Security Engineer who will support both penetration testing efforts and in-house development of security tooling. The ideal candidate has solid programming experience and a strong foundation in identifying, analyzing, and remediating vulnerabilities across applications, networks, and systems. In addition to testing responsibilities, this role will contribute to the development and maintenance of internal InfoSec tools, and serve as a technical advisor during forensic investigations.

What You Will Do

  • Conduct penetration tests on internal and external systems, applications, and infrastructure.  
  • Develop, improve, and maintain custom security tools for internal use.  
  • Provide technical expertise and guidance during forensic investigations and incident analysis.  
  • Document test results and forensic findings with actionable recommendations.  
  • Collaborate with engineering, infrastructure, and compliance teams to drive security improvements.  
  • Stay informed of current security trends, vulnerabilities, and exploits.

What We Are Looking For

  • Bachelor's or Master's degree in Computer Science, Information Security, or related fields.  
  • Solid programming skills (e.g., Golang, Python, JavaScript, or others).  
  • Proven experience in penetration testing (web, mobile, and/or network).  
  • Certifications such as **OSCP** or **CREST** are mandatory.  
  • Knowledge of security frameworks (e.g., OWASP Top 10, NIST, CIS).  
  • Ability to analyze incidents and provide forensic guidance.  
  • Strong problem-solving and communication skills. 

Nice to Haves

  • Familiarity with Golang is a plus.  
  • Experience in code review, secure coding practices, and threat modeling.  
  • Additional certifications such as OSCE, CEH, or GCIH.  
  • Experience with CI/CD integration for security tools or automated testing.  
  • Exposure to cloud or container security (AWS, GCP, Docker, Kubernetes).  
  • Involvement in CTFs, bug bounties, or open-source security projects.

Apply for this job

*

indicates a required field

Resume/CV*

Accepted file types: pdf, doc, docx, txt, rtf

Cover Letter

Accepted file types: pdf, doc, docx, txt, rtf

Select...
Select...

When you apply to a job on this site, the personal data contained in your application will be collected by Fazz Financial Group Pte. Ltd. and/or its associated companies (“Controller”). The Controller’s data protection officer can be contacted at dataprotection@xfers.io. Your personal data will be processed for the purposes of managing Controller’s recruitment related activities, which include setting up and conducting interviews and tests for applicants, evaluating and assessing the results thereto, and as is otherwise needed in the recruitment and hiring processes. Such processing is legally permissible under the First Schedule, Part 3, Paragraph 10 of the Personal Data Protection Act (PDPA) as necessary for the purposes of the legitimate interests pursued by the Controller, which are the solicitation, evaluation, and selection of applicants for employment. Your personal data will be shared with Greenhouse Software, Inc., a cloud services provider located in the United States of America and engaged by Controller to help manage its recruitment and hiring process on Controller’s behalf. Accordingly, if you are located outside of the United States, your personal data will be transferred to the United States once you submit it through this site. The transfer will be subject to appropriate additional safeguards in accordance with the PDPA, including but not limited to sections 24 and 25 of the PDPA. Your personal data will be retained by Controller as long as Controller determines it is necessary to evaluate your application for employment. Under the PDPA, you have the right to request access to your personal data, to request that your personal data be rectified or erased, and to request that processing of your personal data be restricted.