Join a specialized team focused on strengthening the resilience of critical telecommunications infrastructure across ASEAN. In this role, you'll lead offensive security engagements targeting mobile networks—including 5G, legacy 2G/3G/4G, OpenRAN, and cloud-based systems—delivering actionable insights that directly impact national and regional security.
What You'll Do
- Conduct remote redteam assessments for telecom operators and infrastructure providers, simulating real-world adversary behaviors.
- Identify and validate security weaknesses across network layers—signaling, userplane, O&M interfaces—using advanced exploitation techniques.
- Build custom proof-of-concept exploits to demonstrate the practical impact of discovered flaws.
- Deliver clear, technical reports with prioritized remediation strategies tailored to customer environments.
- Inform the development of new security tools and services based on field findings and emerging threats.
What We Need From You
- At least five years of hands-on experience in penetration testing, with a focus on network and infrastructure security.
- Strong command of Linux environments, system internals, and scripting in Python or Bash for automation and tooling.
- Deep understanding of telecom protocols such as SS7, GTP, Diameter, and SIGTRAN, and their security implications.
- Proven ability to debug complex, distributed systems and trace vulnerabilities across kernel and userspace components.
- Fluency in English, both written and spoken, to communicate findings effectively to technical and non-technical stakeholders.
Preferred Expertise
- Industry-recognized certifications such as OSCP, CEH, or PNPT.
- Experience with dynamic analysis tools, network fuzzing frameworks, and kernel-level tracing.
- Track record of vulnerability research in telecom systems, including public disclosures or conference contributions.
- Familiarity with cloud-native telecom architectures, network slicing, RAN sharing, and edge computing (MEC).
Our Environment
The role is field-oriented with a preference for remote audits, though presence within the ASEAN region is expected. You'll work within a mission-driven organization advancing telecom security through research, open-source contributions, and collaboration with global standards bodies. Your work will directly influence the security posture of sovereign networks.
