Senior Pentester

Job Description
- Lead several technical and operational security assessments in different environment inside Bouygues'

Information System.

- Advise remediations to operational teams for found vulnerabilities and raise security awareness among

them in order to reduce the IS security risks.

- Looking for unknown weaknesses and investigating on less known parts of the IS will sometimes be

realized with the Blue Team for them to gain better vision.

- Lead OSINT projects to find public vulnerabilities in Bouygues' IS.



Job Requirements

❖ CyberSecurity skills:

o You prefer to be a Web Security Tester /RED Team player or having experience as BLUE Team

member (want to change career path)

o Strong knownledge about basic Security Concepts

o Good to have CEH/GWAPT/CompTIA Security+ or similar,

o Understand vulnerabilities assessment report, the context and hypothesis of their exploitation for better security risk assessment.

Be able to advise on vulnerability remediation or mitigation

o Define and lead the operational tests and regular checks, automate and industrialize scanning processes

o Technical watch: stay up to date on new vulnerabilities, new attacks ways, new attack vectors and patching state.

o Be able to identify the risk for the business or familiar with Common Vulnerability Scoring System(CVSS)

o Be able to lead OSINT projects and crawl the web to find public vulnerabilities on Bouygues' IS

o Familiar with any Security Standard like OWASP/CIS/NIST/MITRE…

o Experience with security tool:

▪ Scanning tool

▪ Audit tool

▪ Assessment tool

▪ Request/response capture tool (Web app testing)



❖ Profile requirements:

o Bachelor graduated in Network Engineering

o 3 or 5 years experience in cybersecurity

o Development knowledge with the OS (Python, bash, PowerShell),

o Security knowledge on Web, OS, infra, Mobile applications and network,

o Knowledge of different security tools, their pros and their cons.

o Autonomous on the projects you lead

o Capable to communicate about advances and troubles on projects and audits

o The knowledge of audit methodologies is a plus.

Language Skills

- Fluent in English

- French is a big plus



General Skills

- Rigorous, concerned for the quality

- Autonomous

- Methodical/ Organized/ Open minded

- Analyzing needs and constrains

- Good resolving problem and writing skills

- Team and collaborative spirit

- Good interpersonal skill

- Customer service orientation

o Strong aptitude for understanding the user process,

o Helping to structure the request

o Assisting/advising team service



Benefit

- Great Teamwork

- International, friendly, proactive, supportive workplace

- Extensive coaching and training

- In-depth knowledge sharing sessions

- Career growth opportunities

- Agile mindset

- Annual teambuilding activities - Company trip

- Sport, personal activities sponsor

- Compulsory Insurance and Premium health insurance

- Annual health check-up

- 21 annual leave days (sick leave included)

- 1 additional leave days for 3-year working

- 100% salary, full insurances on probationary period

- Up to 2-month performance bonus

- Dell laptop and external monitor for your work

- Work from home 2 days/ week

- Nice open office with free cake – candy – coffee – tea…