Do you get excited about Operational Technology systems in the Energy, Food, or Automotive industry? Do you see the importance of digital security in the world of critical processes?

Cybercrime is growing in the world of critical infrastructure and most critical processes are managed through operational technology and information technology. Bureau Veritas Cybersecurity understands that the industrial sector needs to be treated differently and if you also understand this, then we are looking for you!

We are looking for an OT/IT Penetration Tester. As an OT/IT Penetration Tester you will be active in a variety of sectors: Energy & Utilities, Oil & Gas, Chemical Industry, Infra & Water, Food Production, and Automotive.

From a technical standpoint, we cover the security for both the IT and OT infrastructure. For OT this includes all PLCs, SCADA systems, DCS controllers, Safety systems, HMI’s, and industrial applications. As we can cover both from the same team, we are able to focus on the interactions, dependencies, and security permitters between IT and OT.

As our OT/IT Penetration Tester you will:

• Lead and execute advanced offensive security assessments across complex IT and OT environment
• Coaching other penetration testers on knowledge development and service offerings;
• Collaborate with clients to design tailored cybersecurity assessments, ensuring accurate project scoping and delivering security improvements
• Provide support in security design and security architecture of industrial networks;
• Guide organizations through secure digital transformation, bridging IT/OT convergence while maintaining cybersecurity standards in Industry 4.0 environments;
• Participate in the sales process as a technical expert, identifying strategic cybersecurity opportunities, providing estimates, and providing specialized technical insights

As our IT/OT Penetration Tester, you will primarily offer offensive services and support our advisory services on IEC 62443, IT & OT Site assessments, Threat modeling, a NIS compliance check. All these services are to support our customers to identify risks and improve their security resilience. You are specialized in areas such as threat modeling, internal penetration testing, industrial control systems, hardware hacking, social engineering, and infrastructure reviews both in IT and OT environments.

What you need to have:

• Relevant working experience as an IT/OT Penetration Tester;
• Preferable an OSCP, GICSP, or other relevant IT/OT certifications;
• Practical security experience within industrial networks and industrial devices like PLCs, DCSs, Safety systems, SCADA, and security monitoring solutions;
• Good advisory skills and can communicate technical concepts and assessment results in relation to business impact;
• You have strong verbal and written communication skills in Dutch (preferably) and English. You know how to attract and engage both customers and colleagues;
• Interest and ability to write interesting whitepapers and publications.

What can you expect with us?

Together with a great team of offensive professionals, you will have the opportunity to further develop and expand your knowledge and expertise in the field of cybersecurity.

We have offices in the Netherlands: Eindhoven and Amsterdam. This role can be filled from either location.

• Growth opportunities: We are a fast-growing company and you will have the opportunity to grow in this. Whether it's responsibilities, increasing your visibility inside and outside the organization, or attending training and education, with us your career development is key.
• Cool projects: You will be working with a wide range of renowned clients and customers. This gives you the opportunity to demonstrate your expertise and apply your skills in different environments, allowing you to continue to grow and learn. We do not only offer opportunities for projects within the Netherlands. There will also be opportunities internationally.
• Culture: We value celebrating successes and creating a pleasant working environment. We regularly organize fun activities ranging from annual ski trips to various wine and beer tastings, sailing trips, barbecues and more. Here, team building is key.

Are you interested in this vacancy?

Do you have questions or would you like to apply? You can do so via [email protected]

📌 Pre-employment screenings and assessments can be part of the recruitment procedure. Annual social media screening and a VOG will take place.