Penetration Tester

Summary

Andersen invites a Penetration Tester for a project with a German partner a global leader in optics and optoelectronics. The role focuses on identifying and addressing security vulnerabilities across systems, networks, and applications through penetration testing and assessments.

The customer is a global leader in optics and optoelectronics, operating across industries such as semiconductor manufacturing, medical technology, industrial quality assurance, and consumer optics. With a strong foundation in scientific innovation and sustainability, the company develops high-precision solutions that support progress in healthcare, research, and advanced manufacturing. It is wholly owned by a foundation and invests significantly in R&D to drive technological advancement and societal benefit.

The role involves assessing and enhancing the security of our information systems, networks, and applications through comprehensive penetration testing and vulnerability assessments.

Responsibilities

• Conducting penetration tests on a wide range of digital products, including networks, web, and mobile applications, identifying vulnerabilities and security weaknesses.
• Collaborating with internal product teams to understand their setups, goals, and constraints.
• Communicating findings and solutions effectively to both technical and non-technical stakeholders.
• Preparing detailed and clear reports documenting findings, reproduction steps, and recommended remediation actions, ensuring product teams understand the security implications.
• Working with cross-functional teams, including security engineers and developers, helping them implement security measures and resolve identified vulnerabilities.
• Coordinating and managing penetration tests with third-party vendors when schedules are constrained, ensuring high-quality and timely delivery.
• Contributing to the development and improvement of testing methodologies, processes, and tools.
• Staying up to date with the latest threats, vulnerabilities, and exploits, and developing new testing techniques as necessary.

Requirements

• Bachelor’s degree in computer science/engineering, information security, or a related field. - Proven experience in penetration testing, vulnerability assessment, and security testing with a minimum of 8 years in a similar role.
• Proven track record of conducting successful penetration tests for a variety of organizations and industries.
• Industry-recognized certifications such as Offensive Security Certified Professional (OSCP), GIAC Penetration Tester (GPEN) certifications, or similar qualifications are highly desirable.
• Experience in designing, developing, and executing customized penetration testing methodologies. - Familiarity with various tools and frameworks used in penetration testing, such as Metasploit, Burp Suite, Nessus, Nmap etc.
• Strong knowledge of operating systems (Windows, Linux, and mobile platforms), databases, and web technologies.
• A deep understanding of common security protocols and technologies, including firewalls, intrusion detection/prevention systems, SSL/TLS.
• Programming skills and experience with languages such as Bash, Python, and PowerShell - The ability to provide clear, comprehensive, and actionable reports on penetration test findings, including recommendations for remediation.
• Exceptional written and verbal communication skills to effectively convey technical information to both technical and non-technical stakeholders.
• Level of English – from Upper-Intermediate and above.

Desired skills

• Demonstrated experience in vulnerability research (e.g., CVEs).

Reasons to join us

• Experience in teamwork with leaders in FinTech, Healthcare, Retail, Telecom, and others. Andersen cooperates with such businesses as Samsung, Siemens, Johnson & Johnson, BNP Paribas, Ryanair, Mercedes, TUI, Verivox, Allianz, T-Systems, etc..
• The opportunity to change the project and/or develop expertise in an interesting business domain.
• Job conditions – you can work both fully remotely and from the office or can choose a hybrid variant.
• Guarantee of professional, financial, and career growth! The company has introduced systems of mentoring and adaptation for each new employee.
• The opportunity to earn up to an additional 1,000 EUR per month, depending on the level of expertise, which will be included in the annual bonus, by participating in the company's activities.
• Access to the corporate training portal, where the entire knowledge base of the company is collected and which is constantly updated.
• Bright corporate life (parties / pizza days / PlayStation / fruits / coffee / snacks / movies).
• Certification compensation (AWS, PMP, etc).
• Referral program.
• English courses.
• Private health insurance and compensation for sports activities.

Join us!