[5253] Penetration Tester

Customer: EU Institution
Contract length: 12  months initial duration
Security Clearance: EU Secret

Travel:Willingness to travel 2x3 times a month with full-on site requirement in various locations - Prague, Madrid, Paris, Fucino (Italy). At least 2 weeks in Prague a month + 1 week in various EU locations. Rarely the consultant can work remotely, cannot be predicted, each month is different.

Experience:
• More than 6 years of penetration testing experience (especially low-level pen testing)
• Total more than 10 years of experience.

Those three aspects are fundamental - network and operating systems in the context of offensive security.

Activities:
• The ability to quickly learn new information, particularly regarding non-standard network protocols used between dedicated devices from various manufacturers
• Low-level understanding of various network protocols and the ability to quickly solve diverse networking issues
• Troubleshooting skills for resolving problems at both the operating system and networking levels - Experience with a wide range of network services (e.g., DHCP, FTP, HTTP, SSH, Telnet, and many others)
• The ability to plan actions in detail - Excellent knowledge of the Linux operating system, including the ability to operate at a low level - Proficiency in programming in C, sufficient to develop custom tools and adapt existing software to specific needs
• Proficiency in Python programming using the Scapy library, including the ability to create scripts that generate specific types of traffic or modify network traffic in real time (e.g., conducting Man-in-the-Middle attacks)
• The ability to conduct traditional penetration tests of IT infrastructure
• The ability to work in unusual conditions at the client’s site, without internet access
• General understanding of various system and network security mechanisms and best practices
• Understanding of key IT security concepts such as confidentiality, integrity, and availability