Job Vacancy: Senior Security Specialist – Penetration Tester (1 Position)

Organization: NMB Bank Plc
Location: Head Office (HQ), Tanzania

Job Purpose

The Senior Security Specialist – Penetration Tester will plan, execute, and oversee security testing activities across web and mobile applications, APIs, and both internal and external networks. The role ensures vulnerabilities are identified and addressed using recognized cybersecurity methodologies and industry best practices.

Key Responsibilities

• Participate in the planning, implementation, and improvement of security monitoring and detection capabilities across systems and environments.
• Conduct threat modeling of target systems and design test cases that simulate realistic cyberattack techniques.
• Validate, reproduce, and safely exploit discovered vulnerabilities to produce proof-of-concept (PoC) evidence while ensuring no disruption to business operations.
• Analyze testing results and provide prioritized remediation recommendations aligned with business risk and technical severity.
• Present findings to cross-functional teams and senior stakeholders, track remediation progress, and verify successful implementation.
• Develop and maintain penetration testing tools, scripts, and automated security checks to improve testing coverage.
• Prepare high-quality technical reports and executive summaries for both technical teams and management.
• Provide security guidance during system design, development, and procurement to ensure secure-by-design solutions.
• Coordinate and support third-party and regulatory security testing activities, ensuring compliance with required standards.
• Collaborate with vendors and internal engineering teams to validate fixes and strengthen deployed systems.
• Stay updated on emerging cybersecurity threats, vulnerabilities, and attack techniques, and recommend improvements to the bank’s security posture.

Knowledge & Skills

Candidates should demonstrate knowledge in the following areas:

• Security testing landscape and vulnerability assessment techniques
• Security of operating systems such as Windows, Linux, and Unix
• Security mechanisms in applications, operating systems, networks, databases, and cloud technologies
• Security testing frameworks and methodologies
• Network security architecture and threat modeling
• Application and infrastructure penetration testing
• Scripting in at least one language such as Python, PowerShell, or Bash
• Strong written and verbal communication skills in English and Swahili
• High standards of integrity, honesty, and professionalism

Qualifications

• Bachelor’s Degree in Cyber Security, Computer Science, Information Systems, or a related field.

Added Advantage:

• Professional cybersecurity certifications such as CPTS or OSCP.

Experience

• Minimum 4 years of experience in cybersecurity or related fields.
• Experience in software/web development or source code review in languages such as:
  • Python
  • C/C++
  • C#
  • Java
  • VB.NET
  • ASP.NET
  • PHP
  • NodeJS
• Hands-on experience in Linux and Windows environments.
• Participation in cybersecurity platforms or competitions such as:
  • Capture The Flag (CTF)
  • Hack The Box
  • TryHackMe

Equal Opportunity Statement

NMB Bank Plc is an Equal Opportunity Employer committed to creating a diverse and gender-balanced workforce.

• Female candidates and people living with disabilities are strongly encouraged to apply.
• The bank does not charge any application or recruitment fees.
• Only shortlisted candidates will be contacted.

Application Details

📅 Job Opening Date: 13 March 2026
📅 Application Deadline: 27 March 2026