Offensive Security - Pen Test Senior

The main responsibilities:

• Support and eventually define complete Pen test plans for applications within the scope of testing 
• Support the co-ordination of pen tests that require 3rd parties to execute the tests. This would include test specification, engagement with respective stakeholders, ensuring connectivity and supporting the results output and dissemination. 
• Do some pen testing to retest or prove remediation activities
• Document applications as part of pen test roadmaps in support of ongoing testing and remediation activities
• Advise Offensive Security teams and on their strategy and share with Application or project leads as required
• Review and support changes to offensive security frameworks and use of other testing techniques. Follow the approved pen test processes
• Perform testing of applications to verify remediation and align with Risk Management with results
• Represent the Offensive Security team with other test teams and be a centre of competence for the team. 
• Support the team and the wider community with Agile activities, learning and reporting
• Actively support continuous improvement through the use of AI and automation skills

In this role you will encounter the full spectrum of the attack chain. Ranging from web applications to binary exploitation and infrastructure.  Good understanding of the (security) policies will be required to provide accurate assessments to stakeholders and to test applications and business processes in innovative ways to stress them as much as possible.
Technical skills

•    Sound security design principles, based on confidentiality, integrity and availability requirements and other ISO27002 security principles are an asset.
•    Experience in another organisation within a pen test environment with design, execution and consulting of remediation would be an advantage
•    Experience with the use of other application security test methods to support traditional pen test methods would be a distinct advantage. 
•    Good understanding of Application security including OWASP TOP 10, and willingness to learn with regard to a broad range of attacks (SQLi, XSS, Overflows, DLL-Hijacking…)
 

Why join us

Embark on your new adventure at Euroclear, and work at the heart of the global capital markets. We connect over 2,000 financial institutions across the globe. As an open and resilient infrastructure, we contribute to the stability of the financial markets. We help clients cut through complexity, lower costs, and mitigate risks of financial transactions. At Euroclear, we have the clear ambition to use our key role to facilitate and accelerate a sustainable global financial system. 

What We Offer:

• Work closely with inspiring, supportive and engaged colleagues from more than 80 different countries. 
• Practice your talents in a highly professional international environment. 
• Join a learning and development environment with an emphasis on knowledge sharing and training.
• Competitive salary and comprehensive benefits.

New ways of working

Find your own optimal balance within our hybrid working model, where you can connect at the office and also benefit from remote working. 

Great Place to Work for All

We are committed to creating an inclusive culture that celebrates diversity and strives to be a Great Place to Work for All. All qualified applicants will be considered for employment, regardless of any aspect that makes them unique (including race, religion, national origin, gender, sexual orientation, age, marital status, pregnancy, disability, ...). If you need any specific accommodation due to disability or any other reason, you can let the recruiter know during your application process.