Ethical Hacker - Pen Tester

Job Title: Ethical Hacker /Pen tester – Infrastructure & Application Penetration Testing

Role: Ethical Hacker - Pen Tester

Location: Netherland

Salary: Market

Sponsorship: Possible

Notice Period: Max 30 days

Job Type:  Contract/Permanent

We are seeking a highly skilled and motivated Ethical Hacker/Pen Tester to join our client Cybersecurity team. The ideal candidate will be responsible for performing comprehensive penetration testing across infrastructure, networks, cloud, and applications, identifying vulnerabilities, and providing actionable recommendations to strengthen our organization’s security posture.

Key Responsibilities

• Conduct end-to-end penetration testing of infrastructure, web/mobile applications, APIs, and cloud environments.

• Perform red teaming, vulnerability exploitation, and adversarial simulation exercises to identify weaknesses.

• Collaborate with development, infrastructure, and SOC teams to validate security controls and ensure remediation of vulnerabilities.

• Perform threat modeling and attack surface analysis to proactively identify risks.

• Develop and maintain penetration testing methodologies, playbooks, and reports aligned with industry best practices (e.g., OWASP, MITRE ATT&CK, PTES).

• Support regulatory, compliance, and audit requirements by providing test evidence and risk assessments.

• Research and stay updated on emerging threats, exploits, and offensive security tools.

• Provide technical guidance and knowledge transfer to internal teams regarding secure coding and infrastructure hardening.

Key Skills & Competencies

• Strong hands-on experience with penetration testing tools (e.g., Burp Suite, Metasploit, Nmap, Nessus, Cobalt Strike, Wireshark, Kali Linux).

• Knowledge of web application security and OWASP Top 10 vulnerabilities.

• Strong understanding of network/infrastructure security (firewalls, IDS/IPS, Active Directory, VPNs, cloud security).

• Familiarity with DevSecOps, CI/CD pipelines, and secure SDLC practices.

• Solid knowledge of scripting/programming (Python, PowerShell, Bash, or similar) for exploit development and automation.

• Good understanding of cloud platforms (AWS, Azure, GCP) and their security models.

• Excellent analytical, documentation, and reporting skills.

• Ability to work independently and in a collaborative, cross-functional environment.

Qualifications

• Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience).

• Industry certifications preferred: OSCP, OSWE, CEH, GPEN, GWAPT, CRTP, or similar.

• Minimum 5 years of experience in penetration testing, red teaming, or offensive security.

What We Offer

• Opportunity to work on challenging offensive security projects in a global environment.

• Exposure to cutting-edge security technologies and frameworks.

• A collaborative culture with strong focus on innovation and continuous improvement