PENETRATION TESTER (ETHICAL HACKER) AT PROFORCE LIMITED

About Company:

PROFORCE LIMITED was incorporated in 2008 as a total defence solution provider specializing in armoured vehicles and personal protection. The company’s focus is on the delivery of confidence in protective mobility. We have developed a vibrant market for security and mobile protective products within Nigeria and Africa. PROFORCE has exploited its deep technical know-how to produce outstanding armored products for Government Agencies, Corporate Bodies, Diplomatic Communities and Private individuals within Nigeria and Africa.

Job Description:

• We are seeking a skilled and driven penetration tester with a hacker mindset to proactively Simulate real world attacks to identify, assess and exploit security vulnerabilities.
• You’ll be part of a fast-paced security team, expected to think like an adversary while maintaining ethical standards and compliance.
• You must be capable of both automated and manual testing, custom script writing, and producing detailed yet understandable reports.

Key Responsibilities

• Conduct black-box, gray-box, and white-box penetration tests on: organization’s Web apps, Mobile apps, APIs.
• Perform social engineering and phishing simulation campaigns
• Develop and execute custom exploits where necessary
• Document proof-of-concept exploits and provide risk-ranked findings
• Conduct red team exercises simulating advanced persistent threats (APT)
• Analyze security findings from Hacker One and recreate vulnerabilities
• Collaborate with developers, and product teams to provide remediation guidance
• Stay current on CVEs, exploits, hacker tools, and threat actor techniques (TTPs)
• Weekly updates and debriefs with stakeholders
• Manual Application and Api Penetration testing based on Owasp top 10 (Mobile,Web,Api).

Requirements:

• Proven experience in offensive security or ethical hacking
• Demonstrated history with Bug Bounty programs or CTF competitions
• Deep understanding of web technologies, cloud platforms, and modern infrastructure
• Ability to write and explain exploits or security PoCs clearly
• Strong report writing and communication skills.

Tools and Platforms (it’s expected to have a knowledge of how to use at least one of each of the listed tools):

• Burp Suite, OWASP ZAP, Nmap,
• Mobile security tools: MobSF, Frida, jadx, Objection, genny motion, Andriod studio.
• Kali Linux, Parrot OS, custom scripts in Python, Bash, PowerShell.
• Postman, for API testing
• Security Standards & Compliance
• OWASP Top 10 (Web, API, Mobile)
• CIS Benchmarks
• NIST 800-53, ISO/IEC 27001.

Qualifications and Skills:

• CEH, OSCP, OSCE, GPEN, or similar certifications
• Experience working in CI/CD environments and with DevSecOps teams
• Programming or scripting experience (Python, JavaScript, Nodejs, php, Go, Bash).

Salary

Application Closing Date: 31st July, 2025

Application Instructions:

Interested and qualified candidates should send their CV and a cover letter to hr@proforceintelligence.com using Job Title as the subject of the mail.