💼 Contract type: Freelance / Full-time

🌍 Location: Paris area (preferable), or EMEA remote

📅 Start date: January 2026

⏳ Duration: 3 month contract initially + extensions

💼 Hourly rate: TBD

About the Client

Our client is a globally leading, independent family-owned company specializing in B2B distribution of products, solutions, and related services. With a network of 80 brands across 40 countries and over 50,000 employees, the Group is undergoing a major digital transformation to become the first fully digitalized and synchronized omnichannel B2B distributor worldwide.

The Environment

You’ll join the Group Cybersecurity Department, specifically the Infrastructure Security & Vulnerability Management team within HQ Cyber Security Operations. This team plays a critical role in safeguarding global IT infrastructure, networks, and cloud environments against evolving cyber threats.

The Assignment

We are looking for an experienced Penetration Tester to strengthen the organization’s cybersecurity posture by identifying vulnerabilities in network architectures, operating systems, identity platforms, and cloud environments before they can be exploited. This is a hands-on role requiring deep technical expertise in infrastructure security and an attacker mindset.

Key Responsibilities

• Design and execute penetration tests focused on network and infrastructure security, including internal and external environments.
• Perform advanced testing on Active Directory and Entra ID, covering enumeration, privilege escalation, and lateral movement.
• Assess Windows and Linux builds for hardening compliance and vulnerability exposure.
• Conduct penetration tests on cloud platforms (Azure, AWS, GCP) and hybrid environments.
• Document findings in clear, actionable reports including risk analysis and remediation recommendations.
• Support incident response teams in validating attack scenarios and identifying contributing weaknesses.
• Collaborate with infrastructure and operations teams to ensure effective remediation and prevent recurrence.
• Monitor emerging threats and trends to keep methodologies aligned with evolving risks.

Key Deliverables

• Infrastructure-focused penetration test reports with risk and remediation guidance
• Statement of Work (SoW) documentation for test parameters
• Vulnerability remediation support plans
• Updated methodologies aligned with industry best practices

Your Profile

Education & Certifications:

• Bachelor’s degree in IT, Cybersecurity, or related field
• Preferred certifications: OSCP, CREST CRT

Technical Expertise:

• 5+ years of experience in penetration testing with a strong focus on network and infrastructure security
• Deep knowledge of Active Directory, Entra ID, and privilege escalation techniques
• Experience with Windows/Linux hardening and compliance standards
• Proficiency in at least one major cloud platform (Azure, AWS, GCP)
• Familiarity with frameworks (MITRE, OSSTMM, PTES) and tools (Nmap, Burp Suite, SharpHound/BloodHound)
• Participation in HackTheBox, TryHackMe, or bug bounty programs is a plus

Soft Skills:

• Clear and effective communication
• Analytical thinking and attention to detail
• Problem-solving in complex technical environments
• Team collaboration across international and multicultural settings
• Adaptability and ethical judgment under pressure

Interested?

RIXT® Recruitment is exclusively handling the recruitment & selection for this assignment.

📞 Contact Ameet Sidhoe at +31 6 18 83 05 76

📧 Or email: [email protected]