Job DescriptionWe are looking for an experienced Offensive Security Engineer with a broad and versatile skill set to join the spotit Offensive team.To maintain a strong balance of expertise within our team, we are currently particularly interested in candidates with demonstrated experience and/or a strong interest in the following areas:Advanced red team engagementsTargeted social engineering (spear-phishing, vishing, in-person)Additionally, experience with the following types of engagements is highly desirable:Infrastructure penetration testing (external & internal)Web application penetration testingHaving experience in the following areas is considered a plus, but is not required:Mobile application penetration testingHardware or embedded systems security testingYou will report the findings of these assessments through a detailed pentest/red team report, along with actionable recommendations for remediation. You can present and explain these findings in an understandable manner to both technical and non-technical audiences. Depending on the type of project, you will work independently or in a team.Between projects, you will dedicate time to research or work on setting up and improving infrastructure and custom tools that can be used in future assessments.Curious about what else our Offensive team does at spotit? Check out this talk at DEF CON by Keanu (Head of Offensive), sharing his research into exploiting Microsoft’s login page.Offensive security done rightToo often, we see automated vulnerability scan output rebranded as a “penetration test” report, or the term “Red Teaming” used to describe nothing more than the most basic pentest. Not only does this waste client effort, but it hurts the complete industry by undervaluing the craft of Offensive Security.At spotit, we take offensive security seriously and demonstrate to our clients what high-quality engagements look like when they are led by experienced offensive security professionals.If you prefer mainly running automated tools, ticking boxes, and delivering copy-paste reports, this team isn’t for you. We want people who thrive on solving complex problems, uncovering non-standard vulnerabilities by thinking beyond predefined paths, and who take ownership of the technical depth and quality of their work.We want you to join a team you are proud to be part of and confident to represent.Your ProfileYou hold a Bachelor's or Master's degree in an ICT-related field or equivalent experience.You have several years of experience as a penetration tester or red teamer, and are eager to deepen your expertise.You possess in-depth knowledge of networks, operating systems, and web applications.You understand that penetration testing is more than just running automated scanners and point-and-click exploits. You rely on your knowledge, methodology, and out-of-the-box thinking to create added value.You are flexible in your working methods and not dependent on a few tools. You understand how the tools and scripts you use work under the hood and can adapt them as needed. to penetration testing (OSCP, OCEP, eCPPTv2, eCPTX, PNPT, GPEN, CRTE, CARTE, etc.) are a plus, but not essential if technical knowledge can be demonstrated through other means.You have strong communication skills and can clearly explain the risks and consequences of vulnerabilities.Besides identifying and exploiting vulnerabilities, you can also clearly describe what clients can do to resolve and prevent these issues in the future.You can express yourself fluently in both spoken and written Dutch and English."Every day is a new puzzle. Finding the cracks before the bad guys do is what makes this job exciting!" - Reda, Penetration TesterOfferA challenging role within a dynamic scale-up organization. Spotit has been around for 10 years and has a global customer base in 80 countries.We value a healthy work-life balance, which is ensured through flexible working hours and remote working options.We offer a competitive salary and an IT-worthy package of benefits (representative company car with fuel card, hospitalization insurance, group insurance, mobile phone subscription, meal vouchers, eco-vouchers, etc.).Dedicated training time and budget to invest in your professional development.Spotit is open to various collaboration options (permanent contract or freelancer).You will join a dedicated and collegial team of professionals. Every Friday at 16:00, we have Beer O'Clock, along with regular team events to celebrate our successes.
#J-18808-Ljbffr