Cyber Defence is a fast-growing cybersecurity company on a mission to protect digital assets and build client trust through robust, ethical, and forward-thinking cyber practices. From our office in Pueblo Nuevo, we serve clients across the UK, Spain, and beyond, working with CREST-certified practices and delivering government-grade security services.https://cyber-defence.io/
What You’ll Be Doing
As a Pentester at Cyber Defence, you'll play a key role in simulating attacks to identify system vulnerabilities across networks, applications, and cloud infrastructure. This is a hands-on technical role with a strategic impact on our clients' resilience and regulatory compliance.
Key Responsibilities
* Plan and execute manual and automated penetration tests across web apps, networks, and APIs.
* Perform internal and external vulnerability assessments.
* Create comprehensive reports on findings with clear mitigation guidance.
* Collaborate with SOC Analysts,DevSecOps, and IT teams to implement remediations.
* Stay updated on the latest attack vectors and security research.
* Support Red Team and Purple Team exercises.
* Assist with incident response investigations when needed.
Skills and Qualifications
Must-Haves
* 3+ years of experience in penetration testing or offensive security.
* Strong understanding of common vulnerabilities (OWASP Top 10, MITRE ATT&CK).
* Proficiencyin tools such as Burp Suite, Nmap, Metasploit, Nessus, and Wireshark.
* Experience with scripting languages (Python, Bash, PowerShell).
* Eligibility to work in Spain and occasional travel ifrequired.
Role Overview
Cyber Defence is a fast-growing cybersecurity company on a mission to protect digital assets and build client trust through robust, ethical, and forward-thinking cyber practices. From our office in Pueblo Nuevo, we serve clients across the UK, Spain, and beyond, working with CREST-certified practices and delivering government-grade security services.https://cyber-defence.io/
What You’ll Be Doing
As a Pentester at Cyber Defence, you'll play a key role in simulating attacks to identify system vulnerabilities across networks, applications, and cloud infrastructure. This is a hands-on technical role with a strategic impact on our clients' resilience and regulatory compliance.
Key Responsibilities
* Plan and execute manual and automated penetration tests across web apps, networks, and APIs.
* Perform internal and external vulnerability assessments.
* Create comprehensive reports on findings with clear mitigation guidance.
* Collaborate with SOC Analysts,DevSecOps, and IT teams to implement remediations.
* Stay updated on the latest attack vectors and security research.
* Support Red Team and Purple Team exercises.
* Assist with incident response investigations when needed.
Skills and Qualifications
Must-Haves
* 3+ years of experience in penetration testing or offensive security.
* Strong understanding of common vulnerabilities (OWASP Top 10, MITRE ATT&CK).
* Proficiencyin tools such as Burp Suite, Nmap, Metasploit, Nessus, and Wireshark.
* Experience with scripting languages (Python, Bash, PowerShell).
* Excellent written and verbal communication (English).
* Eligibility to work in Spain and occasional travel ifrequired.
Nice-to-Haves
* CREST CRT or equivalent (OSCP, OSWE, CEH, etc.).
* Experience with cloudpentesting(AWS, Azure, GCP).
* Familiarity with compliance standards (ISO 27001, GDPR, NIST, PCI DSS).
* English & Spanish language skills.
OUR BENEFITS
* Be part of a mission-driven cybersecurity firm with global impact.
* Work alongside CREST-certified experts and forward-thinking leadership.
* Professional development budget & certification support.
* On-site work with flexibility (based out of Pueblo Nuevo office).
* Vibrant office culture near the coast – good vibes only!
#J-18808-Ljbffr