Job Description
Location: Jakarta, Indonesia
Thales is a global technology leader trusted by governments, institutions, and enterprises to tackle their most demanding challenges. From quantum applications and artificial intelligence to cybersecurity and 6G innovation, our solutions empower critical decisions rooted in human intelligence. Operating at the forefront of aerospace and space, cybersecurity and digital identity, we’re driven by a mission to build a future we can all trust.
Thales has been present in the Republic of Indonesia for 45 years in the defence, aerospace and space domains, delivering a wide range of civil and defence solutions that highlight our strong commitment to working with the Indonesian government and local stakeholders. In recent years, our innovative solutions in air traffic management systems and telecom satellites have further strengthened our presence in the country alongside our digital portfolio of solutions such as biometrics, data protection and cybersecurity now serving the needs of diverse customers in civil sectors.
Job Purpose
The Penetration Tester is responsible for identifying security weaknesses through authorized offensive security testing. The role involves conducting penetration tests across web & mobile applications, infrastructure, and networks, validating real-world risks, and providing actionable remediation guidance to improve the organization’s security posture.
Key Responsibilities
Penetration Testing & Security Assessment
Conduct penetration testing on:
Web applications
APIs
Internal and external networks
Cloud environments
Wireless networks (as applicable)
Perform manual and automated security testing
Simulate real-world attack scenarios to assess exploitability and impact
Identify, validate, and exploit vulnerabilities in a controlled and ethical manner
Participate in red team / purple team exercises (where applicable)
Analysis & Risk Evaluation
Analyze findings to determine:
Business impact
Risk severity
Likelihood of exploitation
Map vulnerabilities to industry standards (OWASP, MITRE ATT&CK, CVSS)
Provide practical, prioritized remediation recommendations
Reporting & Communication
Produce clear, high-quality deliverables:
Executive summaries
Technical vulnerability reports
Proof-of-concept evidence
Present findings to technical teams, management, and stakeholders
Support remediation validation and retesting
Collaboration & Improvement
Work with development, infrastructure, and security teams to improve security controls
Contribute to tool development, scripts, and testing methodologies
Stay current with emerging threats, vulnerabilities, and exploitation techniques
Required Skills & Qualifications:
Education
Bachelor’s degree in:
Computer Science
Information Security
Information Technology or equivalent practical experience (at least 2 years of experience as penetration tester)
Technical Skills
Strong understanding of:
Networking (TCP/IP, DNS, HTTP/S, VPNs)
Operating systems (Linux & Windows)
Web application architecture
Hands-on experience with vulnerabilities including:
OWASP Top 10
Authentication & authorization flaws
Injection, XSS, CSRF, SSRF
Misconfigurations and insecure APIs
Proficiency with penetration testing tools such as:
Burp Suite
Nmap
Metasploit
Nessus / OpenVAS
Nikto
Scripting / automation skills in at least one:
Python
Bash
PowerShell
JavaScript
Preferred / Nice-to-Have:
Experience with:
Familiar with VAPT Framework OWASP WSTG,MSTG, OSSTM, etc.
Cloud penetration testing (AWS, Azure, GCP)
Mobile application security (Android / iOS)
Source code review
Knowledge of:
Secure SDLC
DevSecOps practices
Industry certifications (one or more preferred):
OSCP
eWPT / eWPTX
GWAPT
CEH
Experience in regulated industries (banking, aviation, government, healthcare)
Personal Attributes
Strong analytical and problem-solving skills
Ethical mindset and respect for confidentiality
Excellent written and verbal communication
Ability to work independently and in teams
Detail-oriented with a strong sense of responsibility
At Thales, we’re committed to fostering a workplace where respect, trust, collaboration, and passion drive everything we do. Here, you’ll feel empowered to bring your best self, thrive in a supportive culture, and love the work you do. Join us, and be part of a team reimagining technology to create solutions that truly make a difference – for a safer, greener, and more inclusive world.