Enterprise Penetration Tester

We are seeking a highly skilled Enterprise Penetration Tester to join our team at Truesec GmbH, a leading cybersecurity company. In this role, you will conduct advanced security reviews and penetration tests, as well as lead and drive projects with colleagues.

The ideal candidate will have experience in penetration testing of enterprise environments, ability to identify vulnerabilities in both Windows and Linux systems, and experience in network-based penetration tests.

You will also be responsible for identifying vulnerabilities on mobile applications, IOT/OT systems, and cloud environments, and presenting findings to a non-technical audience.

You will lead the assignments from start to finish, meaning that you will be in close contact with our customers for initiation meetings and lead the entire testing process, as well as leading other colleagues in your team within the projects.

The assignments are performed on a technical level where you will actively look for security vulnerabilities, mostly in enterprise environments. Typical projects can be penetration testing of mobile applications, Linux and Microsoft environments, AWS, Google, and IOT/OT or advanced red and purple teaming assignments.

We believe that you are a true expert in a specific area or technology and repeatedly mastermind other implementations with the ambition to make a difference. You should meet most of the following requirements:

1. Experience in penetration testing of enterprise environments.
2. Ability to identify vulnerabilities in both Windows and Linux systems.
3. Experience in network-based penetration tests.
4. Experience in credentials extraction and lateral movement.
5. Ability to identify vulnerabilities on mobile applications.
6. Experience in penetration testing of IOT/OT systems.
7. Ability to identify vulnerabilities in cloud environments.
8. Ability to present findings to a non-technical audience.

Bonus Skills include sysadmin experience, ability to understand arbitrary programming language, full proficiency in at least one programming language, and experience of code assisted/code review-based penetration testing.