You want to join Excellium because… You are curious, motivated, and passionate!
Integrated within dynamic and passionate teams, as our new Senior penetration tester / Offensive security technical leader, you will have the opportunity to fully invest yourself, innovate and create from the latest technologies. You will quickly find your place at Excellium. In order to understand our business, the challenges of our customers and to support them we regularly organize meetings, workshops and training. We will thus help you level up your skills and position you on stimulating projects adapted to your profile and enabling you to surpass yourself.
YOUR TEAM AS A SENIOR PENETRATION TESTER / OFFENSIVE SECURITY TECHNICAL LEADER
Excellium is looking for a senior penetration tester to join the Intrusion and Application Security (IAS) Department based in Luxembourg. With more than 160 engagements performed in 2020 despite the pandemic, the IAS department is one of the largest offensive team in Luxembourg. The department has two practices where consultants specialize in either Application Security or Intrusion activities.
As a member of the Intrusion practice, you conduct different types of offensive engagements such as external, internal, and remote access penetration tests, OSINT, spear phishing, social engineering, and Red Team engagements.
In addition to fulfilling the engagement, you provide Excellium’s clients with your offensive perspective to guide them towards realistic remediation plans depending on their maturity and size.
Your previous experience is an asset to lead the research and development in the security areas where your competencies shine. You are able to coach, mentor and train other members, but also helping to recruit new members to sustain the team expansion.
By joining the IAS department, you are able to improve your technical skills, via internal sharing, training and participation to conferences. You are also directly influencing the catalog of services, to ensure that mission delivered always reflects the latest threat model.
A senior consultant is expected to demonstrate experience in over 5+ areas of expertise. For this position, the following skill areas judged as essentials are listed below.
As a Senior penetration tester / Offensive security technical leader you have:
◼ Network infrastructure penetration testing
◼ Windows and Linux operating systems penetration testing
◼ Proficiency in Active Directory concepts, terminology, and typical abuse
◼ Remote Access and thin client solutions (VPN, Citrix)
◼ Wireless penetration testing
◼ Spear phishing
◼ Defense evasion
◼ Proven consultancy experience with a client-first mindset
◼ Previous experience of penetration test team lead
◼ Excellent spoken and written communication skills, as explaining a vulnerability is just as important as finding it! Languages: English (Mandatory) and French (Preferred)
◼ Ability to work both autonomously and in peer
◼ Ability to support presale activities (qualification and scoping of client needs)
◼ GIAC or Offensive Security certifications (GPEN, OSCP, OSEP, OSWP, OSCE, OSED, OSCEE…)
◼ Proficiency with one C2 framework, such as Cobalt Strike, Metasploit or Covenant
◼ Proficiency in at least one scripting and coding language
You are a big enthusiast of IT security, you are curious and on the lookout for the latest news, security holes and technological advances, then apply !