Coordinate and manage end-to-end penetration testing activities across applications, infrastructure, and cloud environments
Serve as the primary liaison between internal stakeholders, development teams, and external testing vendors
Plan, schedule, and track penetration testing engagements to ensure timely execution and delivery of high-quality reports
Review and validate testing scopes, methodologies, and findings to ensure compliance with internal security policies and industry standards
Perform technical reviews of vulnerabilities and assess their potential business impact and exploitability
Support remediation planning by collaborating with system owners, development, and operations teams to prioritize and track fixes
Ensure penetration testing aligns with regulatory, compliance, and risk management requirements (e.g., ISO 27001, PCI-DSS, NIST)
Maintain a centralized repository of test results, metrics, and lessons learned to support continuous improvement
Provide regular status updates, executive summaries, and risk reports to senior management and cybersecurity leadership
Mentor junior team members and promote a culture of proactive security testing and risk awareness
Requirements:
5+ years of experience in cybersecurity, including at least 3 years in penetration testing coordination, vulnerability management, or red team operations
Strong understanding of penetration testing methodologies, tools, and frameworks
Working knowledge of application security, network security, cloud environments (AWS, Azure, GCP), and secure development practices
Experience managing external vendors or testing service providers
Familiarity with risk assessment, vulnerability management, and remediation tracking processes
Excellent communication skills with the ability to explain technical findings to non-technical audiences
Fluent in English, both written and spoken
Offer:
Permanent employment contract
Hybrid, flexible working model
Possibility of using increased tax-deductible costs in the case of creative work
Co‑financing to equip a workplace at home
Development opportunities
Substantive support from project leaders
Wide range of internal and external trainings (technical, language, leadership)
Benefits as part of the social package (cafeteria system, medical care for the whole family, group insurance on preferential terms)
