We are looking for Pentester for one of our clients in Germany.
The role is permanent, with remote way of working.
Responsibilities
Primary Responsibilities:
* Conducting penetration tests on both offsite and onsite infrastructures and applications.
* Assessing IT infrastructures including (AD) and network architectures through Red Teaming.
* Web applications and Web APIs in alignment with OWASP WSTG / OWASP ASVS
* Applications according to OWASP MSTG / OWASP MASVS and IoT
* Executing phishing campaigns, managing vulnerabilities, and overseeing Bug Bounty Programs.
* Performing whitebox assessments and security code reviews.
* Evaluating application and network architectures, and formulating security concepts.
* Conducting workshops on technical IT security topics.
* Preparation of final reports and delivering final presentations.
Potential Additional Responsibilities:
* Implementing and executing technical measures such as redesigning network infrastructure and managing patches and vulnerabilities.
* Conducting physical security inspections and tests.
* Developing security concepts including Identity & Access Management, Cloud Security Concepts, and Awareness concepts.
Your Profile:
* Strong technical knowledge in IT security.
* Proficiency in conducting offsite and onsite penetration tests with a focus on Red Teaming, IT infrastructures, web applications, and APIs.
* Programming and scripting skills, particularly in Python and Bash.
* Competence in system administration, including command-line proficiency in Linux and Windows environments.
* Preferably possess OSCP or CPTS Certification.
* Demonstrated high ranking in platforms like HackTheBox or CaptureTheFlag rank (EliteHacker or higher)
* Optional expertise in IT security within Azure and AWS cloud services.
* Optional skills in Forensic Analysis and ISO 27001.
* Excellent proficiency in German language, both written and spoken.
If you are interested in this role or you know someone who is, apply directly to milica.joksimovic@nicollcurtin.com