Profile Title: Security Testing Specialist (TSEC)

Seniority Level: Senior Location: Luxembourg Onsite

Requirements: Hybrid model – at least 2 days per week on-site

Start Date: As defined in the service request (tentatively Q2 2025)

Working Hours: 8 hours/day, 5 days/week Language: English (working language), French is an asset

Technical Skills and Tools

Mandatory:

Penetration testing tools: Burp Suite, OWASP ZAP, Metasploit, etc.

Scripting: Python, Bash, PowerShell

Vulnerability scanners: Nessus, Qualys, OpenVAS

OS knowledge: Linux and Windows

Web and API security: REST, SOAP, JSON, XML

Understanding of OWASP Top 10, Secure SDLC, DevSecOps

Desirable:

Knowledge of cloud security controls (Azure, AWS, GCP)

Experience with SIEMs and log analysis

Familiarity with compliance frameworks: ISO 27001, NIST, CIS

Qualifications and Experience

Minimum 5 years of experience in cybersecurity testing

University degree in IT, engineering, or equivalent experience

Certifications such as OSCP, CEH, GIAC, CISSP are advantageous

Strong reporting and documentation skills in English

Experience in European Institutions or large public-sector IT environments is a plus