Cybersecurity Consultant/Pentester

Function

We are seeking a talented professional to join our client’s dynamic team, focusing on enhancing and managing cybersecurity testing services. In this role, you will ensure the structured and high-quality execution of security tests while integrating them seamlessly into existing processes and development initiatives.

Key Responsibilities

• Plan, coordinate, and execute penetration tests on applications, systems, and infrastructure
• Perform testing independently and collaborate with external specialized partners
• Define testing scope and objectives together with internal stakeholders
• Ensure quality across the full lifecycle: request intake, execution, reporting, and vulnerability follow-up
• Contribute to ethical hacking initiatives and vulnerability management programs
• Collaborate with internal teams and external researchers to analyze, prioritize, and remediate vulnerabilities
• Integrate cybersecurity practices into the Software Development Lifecycle (SDLC)
• Work closely with architects and developers to implement security testing techniques such as:
  • Static Application Security Testing (SAST)
  • Dynamic Application Security Testing (DAST)
• Continuously improve security testing processes and methodologies

Profile of the Ideal Candidate

• Demonstrated experience as a Security Consultant (data, infrastructure, or applications)
• Strong expertise in information security practices and methodologies
• Experience implementing and improving security management processes
• Solid understanding of security governance and risk management
• Familiarity with industry frameworks and standards such as:
  • ISO 27000
  • NIST
  • OWASP
• Knowledge of web and application security principles
• Experience with programming and/or scripting languages
• Relevant certifications are highly valued (e.g., CISM, CISSP, CEH)

Language Requirements

• Fluency in Dutch (CEFR level C2)
• Professional proficiency in English

Key Qualifications

• Proven experience conducting penetration tests on:
  • Web applications
  • APIs
  • Platforms and infrastructure
• Experience analyzing, optimizing, and documenting security processes
• Strong understanding of security testing standards and methodologies
• Hands-on experience with SDLC security integration, including:
  • SAST
  • DAST
  • Software Composition Analysis (SCA)
• Ability to effectively analyze, prioritize, and follow up on vulnerabilities
• Relevant certifications such as CISM, CISSP, or CEH