Lead offensive security engagements across web, network, mobile, and Active Directory environments. Own scoping, quality assurance, reporting, and client relationships while coaching delivery teams. Requires 5+ years of hands-on penetration testing experience with recognized certifications.
Key Highlights
Key Responsibilities
Technical Skills Required
Benefits & Perks
Job Description
Our Penetration Testing practice delivers offensive security engagements for clients across financial services, technology, healthcare, government, and critical infrastructure. you sit at the intersection of hands-on testing and engagement delivery: you'll personally lead technical assessments across web, network, mobile, and Active Directory environments, while also owning scoping, quality, reporting, and client relationships, and coaching the consultants and analysts working alongside you.
Key Responsibilities
- Manage assigned engagements from initiation through reporting and closure.
- Act as the primary point of contact for clients during testing activities.
- Review and quality-assure technical findings and reports.
- Assist with scoping, estimation, and proposal development.
- Present findings to both technical and non-technical stakeholders.
- Contribute to internal methodology, tooling, playbooks, and knowledge-sharing.
- Support business development: assist with proposals, scoping calls, effort estimation, and pre-sales technical input.
- Help uphold delivery standards aligned to recognized frameworks
Interested in remote work opportunities in Cyber Security? Discover Cyber Security Remote Jobs featuring exclusive positions from top companies that offer flexible work arrangements.
Required Qualifications
- 5+ years of hands-on penetration testing / offensive security experience, ideally including consultancy or multi-client delivery.
- Demonstrable depth across at least three of: web application, network (internal/external), mobile, and Active Directory testing.
- Strong command of industry-standard tooling: Burp Suite, Nmap, Metasploit, BloodHound/SharpHound, Impacket, CrackMapExec/NetExec, Cobalt Strike or equivalent C2, Nessus/OpenVAS, mobile tooling (Frida, MobSF, objection), etc.
- Solid grounding in networking, operating system internals (Windows and Linux), authentication protocols, and common exploitation and post-exploitation techniques.
- Scripting/automation ability in Python, PowerShell, and/or Bash.
- Excellent report-writing and communication skills able to explain complex technical risk to non-technical audiences.
- Experience managing client relationships and/or leading small delivery teams or workstreams.
Browse our curated collection of remote jobs across all categories and industries, featuring positions from top companies worldwide.
Certifications - Required at least one of:
- OSCP (Offensive Security Certified Professional)
- CREST CRT / CPSA, with CCT (App or Infra) strongly preferred
- CRTP / CRTO
Offer:
- Location: 100% remote / equipment pick up at office WAW/WRO
- Start: ASAP
- Employment: B2B contract with apreel
- Rate: 165 PLN/h + VAT
Similar Jobs
Explore other opportunities that match your interests