Build the offensive security firm we'd want to hire ourselves
SecurityWall is an OSCP, OSWE and CISSP-certified offensive security firm serving clients across Saudi Arabia, the UAE, the UK, the Netherlands and globally. We are NCA-registered. We are remote-first. And we are looking for senior people who want to do real work, on real engagements, for real stakes.
Why work at SecurityWall
Six things our team consistently says they value most about working here.
Remote-first, globally
Work from anywhere your timezone overlaps with our delivery hours. No commute, no "office days".
Real work, real impact
You will work on production engagements from day one, not training exercises. Your findings reach C-suites and regulators.
Training & cert support
OSCP, OSWE, OSEP, CISSP, CCSP and cloud certifications fully covered for the right candidate.
Flexible hours
Set your own schedule around delivery commitments. We measure outcomes, not seat-time.
Health & wellbeing
Health insurance support tailored to your country of residence. Mental-health stipend included.
Conference budget
Annual budget for DEF CON, Black Hat, OffensiveCon, RSA, or regional security conferences of your choice.
Open Roles
All roles are full-time and remote. We hire globally; you should overlap with KSA/UAE/UK business hours.
Senior Penetration Tester
Lead web application, API, cloud and network engagements for clients across KSA, UAE, UK and global markets. OSCP / OSWE expected. Owns scoping calls, hands-on testing and reporting against NCA, SAMA, NESA, SOC 2 and PCI DSS.
- OSCP or equivalent, OSWE strongly preferred
- 4+ years hands-on offensive security
- Strong web/API + cloud (AWS/Azure/GCP) exploit experience
- Native English writing for executive-quality reports
Security Software Engineer
Build and ship SLASH (our pentest delivery platform) and internal tooling. TypeScript + Next.js stack. Work with our offensive team to turn one-off tests into repeatable, auditable workflows.
- 3+ years TypeScript / Node.js
- Solid Next.js / React experience
- Comfortable with cloud infra (Vercel, AWS) and SOC-2-friendly engineering hygiene
- Bonus: prior security tooling or pentest platform work
Cybersecurity Analyst
Support SOC 2, ISO 27001, NCA, SAMA and PDPL engagements: gap assessments, policy drafting, evidence walkthroughs and audit-readiness. Pair with our offensive team during pentest delivery.
- CISSP, ISO 27001 LA/LI or equivalent
- 2+ years GRC / compliance consulting
- Familiarity with at least two of: SOC 2, ISO 27001, PCI DSS, NCA ECC, SAMA CSF
- Strong client-facing communication
Don't see your role? We're always open to senior offensive-security people, security engineers and GRC consultants who match how we work.
Send us a general applicationHow we work
The four operating principles every engagement runs on.
Hack with integrity
We test things hands-on, write reports that stand up to auditors and regulators, and never inflate findings to pad a deliverable.
Beat market pricing without cutting corners
Our pricing model means our team is efficient, focused and senior. We do not ship junior work and call it "the standard rate".
Own the outcome
You drive engagements end-to-end, from scoping through retesting. No "throw it over the wall" between teams.
Default to clear writing
A finding that the customer cannot understand is a finding we have not delivered. Reports are crisp, prioritised and free of fluff.
Ready to apply?
One form, one resume, three working days to a first response. We review every application personally, no recruiter screen, no ATS keyword filtering.