SGS Brightsight provides clients with security certification on products and systems. Our job is to ensure the security functionality and robustness of the design within a product and its connected systems. The Senior Penetration Tester will lead security assessment and evaluation projects, conduct tests and advice others how to conduct tests to evaluate security vulnerabilities in applications, IoT devices and networks. The role includes the responsibility over the test environment and test procedures.

The Senior Penetration Tester will lead security assessment and evaluation projects, conduct tests and advice others how to conduct tests to evaluate security vulnerabilities in applications, IoT devices and networks. The role includes the responsibility over the test environment and test procedures.

More specifically, you will:

• Lead security assessment and penetration tests;
• Lead others performing penetration tests;
• Develop and maintain the test environment and procedures;
• Perform penetration tests on electronic products and systems;
• Perform threat modelling and risk assessments;
• Engage with customers and present results. 

• Educated to degree level in disciplines such as Microelectronics, Physics, Computer Science, Information Technology or a relevant subject; 
• OSCP or GPEN certified;
• Background of conducting tests on enterprise networks and environments, web applications or IoT devices beneficial; 
• Experience with Acunetix, OpenVAS or Nessus, Kali Linux and OWASP and similar methodologies;
• Background with testing standards like Common Criteria or UL 2900;
• Experience with conducting cybersecurity assessment and audits.

This position will be based at our lab in Graz.