1 Proficiency in one or more scripting or programming languages 2 Familiarity with penetration testing methodologies, tools (e.g., Burp Suite, Nmap, Metasploit), and scripting languages (e.g., Python, Bash, PowerShell). 3 Analyse vulnerability scan results from tools like Tenable, Qualys, or Rapid7 to identify security weaknesses across infrastructure and applications. 4 Plan, execute, and report on penetration tests of applications, networks, APIs, cloud environments, and other IT assets 5 Consult with application developers, systems administrators, and management to demonstrate security testing results, explain the threat presented by the results, and consult on remediation 6 Communicate security issues to a wide variety of internal and external customers to include technical teams, executives, risk groups, vendors and regulators 7 Proactively pursue, validate and report any system security loopholes, infringements and vulnerabilities identified. 8 Conducting internal and external network assessments, exploiting infrastructure weaknesses. 9 Facilitate and coordinate vulnerability assessments and scans, review assessment results, and oversee remediation activities for network and infrastructure devices. 10 Manage and maintain up-to-date vulnerability, asset, and configuration databases. 11 Provide detailed findings, risk ratings, and remediation recommendations to technical and non-technical audiences 12 Prioritize vulnerabilities based on criticality, exploitability, and potential business impact.