Red Team Consultant

Company Description

Inetum is a European leader in digital services. Inetum’s team of 28,000 consultants and specialists strive every day to make a digital impact for businesses, public sector entities and society. Inetum’s solutions aim at contributing to its clients’ performance and innovation as well as the common good.

Present in 19 countries with a dense network of sites, Inetum partners with major software publishers to meet the challenges of digital transformation with proximity and flexibility.

Driven by its ambition for growth and scale, Inetum generated sales of 2.5 billion euros in 2023.

Job Description

With the continuous growth of our clients and the increasing demand for digital security, we are expanding our team with a Red Team Consultant to conduct cybersecurity testing (pentesting), following well-established methodologies such as PTES, OWASP, TIBER-EU, among others.

Key Responsibilities

• Perform penetration tests on web applications using manual techniques such as, XSS, Clickjacking, SQL Injection, CSRF, CRLF, LFI, IDOR;
• Use automated tools such as,SQLMap, Burp Suite (Intruder, Repeater, etc.);
• Develop scripts in Python and Bash;
• Actively participate in Red Team projects focused on simulating real-world attacks.
  
  

Qualifications

• Proven experience (minimum 2 years) in penetration testing, with a focus on web applications;
• Strong command of manual exploitation techniques: XSS, Clickjacking, SQL Injection, CSRF, CRLF, LFI, IDOR;
• Experience with security tools, such as, SQLMap and Burp Suite (Intruder, Repeater, etc.);
• Solid scripting skills, particularly in Python and Bash (for task automation and exploit development);
• Familiarity with security methodologies such as PTES, OWASP, TIBER-EU;
• Ability to analyze vulnerabilities and produce clear, objective technical reports;
• Autonomy and proactivity in identifying vulnerabilities and proposing solutions;
• Strong communication skills, both with technical teams and non-technical stakeholders.
  
  

Certifications

• Required:
• CEH (Certified Ethical Hacker) or PNPT (Practical Network Penetration Tester)
• Preferred:
• OSCP (Offensive Security Certified Professional)
• EJPT (eLearnSecurity Junior Penetration Tester)
• CRTO (Certified Red Team Operator)
  

Additional Information

• Workplace type: Hybrid;
• Location: Lisboa, Covilhã, Porto or Madeira.