PenTester Middle

GlobalLogic (Hybrid: Palermo)

GlobalLogic family

Expand your skills by collaborating with a diverse team of highly talented people in an open, laidback environment and be part of the forefront of digital transformation!

We offer an opportunity to participate in creating market-defining products using the latest technologies with clients across all industries and sectors. GlobalLogic prioritizes work-life balance, which is why we offer flexible opportunities and options.

Job Description

Position Overview

As a Cybersecurity Consultant Penetration Tester at our client, you will leverage your expertise in penetration testing tools and cybersecurity best practices to enhance the security posture of our clients. With 3 - 4 years of experience, you will be responsible for a key role in identifying vulnerabilities, simulating real-world cyberattacks, aiding vulnerability prioritization, and providing actionable remediation recommendations to help our clients strengthen their security posture. Your role will involve working on internal and external network penetration testing, application security assessments (browser-based, API, mobile), cloud environment testing, social engineering engagements, and wireless assessments. Day-to-day will be to collaborate with internal teams and clients to communicate findings and ensure effective resolution of security issues within agreed upon timeframes. Strong consulting skills, clear communication, and the ability to engage with stakeholders with technical and non-technical backgrounds are crucial for success in this position.

What You’ll Bring

A Bachelor’s Degree (or equivalent experience) in Information Security, Computer Science, or a related field

3+ years of hands-on experience in network and/or application penetration testing

Proficiency with scripting languages such as Python, PowerShell, Shell, or Ruby

Familiarity with security frameworks (e.g., PCI, HIPAA, FEDRAMP, HITRUST, or FISMA)

1–3 years of experience in IT security audit and/or compliance roles

Strong technical foundation in networks, servers, workstations, and applications

Experience working in a consulting or client-facing role (minimum 3 years)

Strong communication and presentation skills, able to interface with both technical and non-technical stakeholders

Application security or software development experience (2+ years preferred)

You should have solid proficiency in at least one of the following areas:

Cloud Penetration Testing (e.g., AWS, Azure, GCP)

Network/Active Directory Penetration Testing

Application (Web/API/Mobile/Thick) Penetration Testing

Secure Code Review

Hardware or IoT Testing

Container Security Testing

AI or ML System Testing

Compliance-Driven Penetration Testing (e.g., PCI, NIST, OWASP)

What Sets You Apart

Proven ability to manage time and juggle multiple tasks under tight deadlines

Strong consulting presence, can lead client meetings, kickoff calls, and present findings clearly

Excellent report writing skills, capable of drafting both technical detail and executive summaries

Continuous learning mindset, actively pursuing certifications and keeping up with threat landscapes

Job Responsibilities

What You’ll Do

- Perform security assessments across various platforms and technologies

- Simulate sophisticated cyberattacks to assess and improve client defenses

- Advise clients on technical security and compliance best practices

- Manage your own testing priorities and deliver high-quality work on time

- Collaborate with internal teams (PMs, QA, sales, and other consultants) to deliver exceptional client service

- Create and maintain testing methodologies, documentation, and processes

- Write detailed, high-quality reports for both technical and executive stakeholders

- Scope and lead penetration testing engagements from start to finish

- Help resolve escalations during active assessments

- Mentor junior team members and contribute to a positive team environment

- Support the team’s success by contributing to KPIs, innovation, and knowledge sharing

About GlobalLogic

GlobalLogic is a Hitachi Group Company, leader in digital engineering. Based across 14 countries. We help brands across the globe design and build innovative products, platforms, and digital experiences for the modern world. By integrating experience design, complex engineering, and data expertise—we help our clients imagine what’s possible and accelerate their transition into tomorrow’s digital businesses. Headquartered in Silicon Valley, GlobalLogic operates design studios and engineering centers around the world, extending our deep expertise to customers in the automotive, communications, financial services, healthcare and life sciences, manufacturing, media and entertainment, semiconductor, and technology industries.

GlobalLogic is operating under Hitachi, Ltd. (TSE: 6501) which contributes to a sustainable society with a higher quality of life by driving innovation through data and technology as the Social Innovation Business