Found Description
Overview
The Pentest / Retest Operator supports the Team by executing approved penetration testing activities, validating remediation efforts, and producing clear technical evidence for IT, GRC, and audit stakeholders. This operates under the supervision of the Team Manager and must follow defined Rules of Engagement, approved scopes, and internal evidence standards. The role is intended to increase execution capacity without transferring ownership of risk acceptance, final report approval, or security architecture decisions.
Key Responsibilities
- Execute approved penetration testing activities for internal, external, web, API, and infrastructure scopes.
- Perform reconnaissance, enumeration, vulnerability validation, and controlled exploitation only within approved scope.
- Support BPO pentest activities by validating business-impacting vulnerabilities and documenting reproducible attack paths.
- Identify technical weaknesses rel...