img
Contract TypeFull-time
Workplace typeOn-site
LocationRiyadh

Job Description

About the Role

Hala is a leading fintech company in the MENAP region focused on redefining financial services for SMEs. The Cybersecurity Offensive Specialist will play a crucial role in ensuring the security of Hala's systems and platforms by conducting advanced offensive security assessments. This full-time position is based in Riyadh, Saudi Arabia.

Role Overview

The Cybersecurity Offensive Specialist is responsible for simulating realistic cyberattacks to identify and exploit security vulnerabilities across systems, networks, and applications. This role involves detailed documentation and communication of findings and attack pathways to both technical and executive stakeholders, providing actionable recommendations. Collaboration with defensive security teams is essential to test and enhance the organization's detection and response capabilities against sophisticated threats.

Key Responsibilities

  • Execute offensive security assessments, including red teaming, adversary simulation, and penetration testing, in alignment with SAMA CSF and NCA ECC requirements.
  • Conduct controlled attack exercises on applications, cloud environments, APIs, and payment/merchant platforms to validate real-world exploitability.
  • Perform advanced penetration testing and source code reviews to identify deep-seated vulnerabilities.
  • Collaborate with Defense and SOC teams to validate and improve detections against identified attack vectors.
  • Maintain and utilize offensive tooling and lab environments, strictly adhering to rules of engagement to ensure safe testing with zero business disruption.
  • Deliver clear, detailed remediation guidance to Product and Engineering teams and support the tracking and closure of critical findings.
  • Ensure all assessment activities, evidence, and reporting align with SAMA CSF and NCA ECC control objectives and audit expectations.

Qualifications and Experience

This role requires 5-10 years of experience in cybersecurity, with a focus on offensive security. Candidates must possess at least one recognized offensive security certification such as OSCP, CRTO, or eCPPT, or an equivalent. Additional certifications like OSEP, OSWE, GXPN, GWAPT, GPEN, or CRTP/CRTE are preferred for candidates with advanced red team and adversary-simulation expertise.

About Hala

Founded in 2017 and licensed by the Saudi Arabian Central Bank, Hala is a key player in the MENAP fintech sector. The company provides SMEs with cutting-edge financial and technological tools to start, run, and grow their businesses. Hala operates across the UAE, Saudi Arabia, and Egypt, offering solutions for payment digitization, sales, and operations management.

Work Environment and Culture

Hala fosters an inclusive and diverse culture that encourages innovation and flexibility across remote, in-office, and hybrid work arrangements. The company prioritizes personal development through regular training and an annual learning stipend. Employees join a talented, multinational team and gain experience in a dynamic industry, with opportunities for autonomy, mentoring, and significant responsibility.


Requirements

  • Requires 5-10 Years experience

Similar Jobs