

Alois Solutions
https://aloissoutions.comAbout
Company social profiles
Jobs at Alois Solutions
Key Responsibilities
- Establish, lead, and develop a penetration testing team, including recruitment, onboarding, mentoring, performance management, and career development.
- Define the team structure, capability model, skills matrix, training plan, and operating procedures.
- Develop and mature penetration testing services across areas such as web applications, APIs, infrastructure, cloud, Active Directory, wireless, mobile, social engineering, red teaming, and attack simulation.
- Define, own, and maintain methodologies, standards, scopes of work, report templates, and QA processes.
- Own engagement models and commercial assets including pricing models and delivery processes..
- Own the end-to-end delivery of penetration testing engagements, ensuring work is delivered safely, legally, on time, and to a high technical standard.
- Act as the technical authority for penetration testing, providing escalation support and quality review for complex findings and reports.
- Build trusted relationships with clients, internal stakeholders, technology teams, risk teams, and senior leadership.
- Identify market demand, emerging threats, and customer needs to shape the future service roadmap.
- Support pre-sales, bid responses, proposals, scoping calls, statements of work, and commercial discussions.
- Ensure all testing activity is conducted within agreed rules of engagement, legal boundaries, regulatory requirements, and internal governance.
- Implement quality control processes, peer review, report assurance, technical standards, and continuous improvement mechanisms.
- Track team performance, utilisation, revenue, margin, delivery quality, customer satisfaction, and remediation outcomes where relevant.
- Maintain awareness of emerging vulnerabilities, exploit techniques, threat actor tactics, industry trends, and regulatory changes.
- Represent the penetration testing function in senior management forums, client meetings, audits, and risk committees.
- Develop strategic partnerships, tooling strategies, lab environments, knowledge bases, and reusable assets to improve delivery efficiency and quality.
Required Skills and Experience
- Significant industry experience in penetration testing, offensive security, red teaming, vulnerability assessment, or security consultancy.
- Proven experience in leading, managing, and mentoring penetration testers and offensive security professionals.
- Demonstrable ability to create, grow, or mature a security testing function, consultancy practice, or technical service line.
- Strong technical background across web application, API, infrastructure, cloud, Active Directory, and network penetration testing.
- Experience in developing service offerings, methodologies, testing standards, engagement models, and reporting frameworks.
- Strong understanding of common security frameworks, standards, and scoring methodologies, including OWASP, MITRE ATT&CK, NIST, ISO 27001, PCI DSS, Cyber Essentials, and CVSS.
- Experience in managing multiple concurrent engagements, priorities, stakeholders, and delivery risks.
- Ability to review and challenge technical findings, exploit evidence, risk ratings, and remediation recommendations.
- Strong commercial awareness, including experience with scoping, pricing, proposals, bids, utilisation, profitability, and customer relationship management.
- Excellent written and verbal communication skills, with the ability to engage technical teams, executives, clients, auditors, and regulators.
- Strong understanding of legal, ethical, and operational risk considerations associated with penetration testing.
- Experience building processes for quality assurance, peer review, safe testing, evidence handling, and reporting consistency.
Certifications
Candidates should hold relevant industry certifications such as:
- OSCP, OSEP, OSWE, OSED, or other Offensive Security certifications
- CREST Certified Tester, CREST Certified Infrastructure Tester, CREST Certified Web Application Tester, or equivalent
- GIAC certifications such as GPEN, GWAPT, GXPN, GMOB, GCPN, or GSE
- CISSP, CISM, CRISC, or similar senior security management certifications
- CompTIA PenTest+ or Security+
Holding multiple technical and leadership-focused certifications would be advantageous.
Desirable Skills
- Experience building a penetration testing team, consultancy practice, or managed security testing service from inception through to delivery and execution.
- Experience creating go-to-market propositions, service catalogues, sales collateral, and delivery playbooks.
- Previous responsibility for revenue, budget, headcount, utilisation, margin, or service profitability.
- Experience with red teaming, threat-led penetration testing, adversary simulation, purple teaming, or assumed-breach exercises.
- Experience delivering services aligned to CREST, PCI DSS, CBEST, TIBER, STAR-FS, or similar assurance schemes.
- Knowledge of cloud security testing across AWS, Azure, or Google Cloud Platform.
- Experience with DevSecOps, CI/CD security testing, container security, Kubernetes assessments, and secure software development practices.
- Experience selecting, implementing, and managing penetration testing tools, labs, reporting platforms, and collaboration systems.
- Experience managing external suppliers, contractors, or partner organisations.
- Ability to mentor senior consultants and develop future technical leaders.
Similar companies
About the company
Founded a decade ago, a group of seasoned professionals came together to ask ‘How might we use technology to bring the world closer to social justice?’ A small team was put together to create incredible solutions for organisations working towards delivering large scale impact. Today, we’re a global organisation providing disruptive software solutions to our customers who are solving important problems in their industry and also the world we live in. At TechnoIdentity, we challenge our team of passionate technologists to create forward-looking solutions for our customers that improve operational efficiency and bolster their bottom line. We empower them with the tools, methodologies and decision-making to make real impact, fast. We invite creative minds and businesses to TechnoIdentity, let’s collaborate to transform lives through technology.
Life at TechnoIdentity is shaped by the belief that everyone deserves to bring their authentic self to work and as responsible adults, you will choose to spend your time wisely on things matters the most to you.
Jobs
8
About the company
Deep Tech Startup Focusing on Autonomy and Intelligence for Unmanned Systems. Guidance and Navigation, AI-ML, Computer Vision, Information Fusion, LLMs, Generative AI, Remote Sensing
Jobs
4
About the company
Oracle Cloud is a cloud computing service offered by Oracle Corporation providing servers, storage, network, applications and services through a global network of Oracle Corporation managed data centers. The company allows these services to be provisioned on demand over the Internet.
Jobs
6
About the company
Jobs
22
About the company
Quantiphi is an award-winning AI-first digital engineering company driven by the desire to reimagine and realize transformational opportunities at the heart of the business. Since its inception in 2013, Quantiphi has solved the toughest and most complex business problems by combining deep industry experience, disciplined cloud, and data-engineering practices, and cutting-edge artificial intelligence research to achieve accelerated and quantifiable business results.
Jobs
6
About the company
Jobs
108
About the company
RockED is the premier people development platform for the automotive industry, supporting the entire employee lifecycle from pre-hire and onboarding to upskilling and career transitions. With microlearning content, gamified delivery, and real-time feedback, RockED is educating the automotive
workforce and solving the industry's greatest business challenges.
The RockED Company Inc. is headquartered in Florida. Backed by top industry experts and investors,
we’re a well-funded startup on an exciting growth journey. Our R&D team (Indian entity) is at the core
of all product and technology innovation
Our India R&D team, which is in Bangalore (Office in Church Street), leads all product and technology innovation, and we’re now expanding this team.
AI will play a key role in improving intelligence, personalization, and overall user experience across the platform.
Jobs
4
About the company
Jobs
1
About the company
At Ampera Technologies, we empower businesses with cutting-edge data analytics, quality assurance, and data engineering solutions
Jobs
21
About the company
Jobs
1






