Offensive IT Security Engineer / Penetration Tester

Team Information Technology and Cyber
Location Bucharest, Romania
Position Type Full time
Reference Number JR0607194

Team of adults working together in an office

Job Description

Are you ready to write your next chapter?

Make your mark at one of the biggest names in payments. We’re looking for a highly skilled Offensive IT Security Engineer to join our ever evolving team and help us unleash the potential of every business.

What you'll own as the Offensive IT Security Engineer / Penetration Tester

The ideal candidate will be responsible for designing, implementing, and executing advanced penetration testing and red/purple teaming engagements. The Offensive Security Engineer will play a pivotal role in identifying vulnerabilities, assessing security posture, and providing actionable insights to enhance our clients' cybersecurity defenses.

Responsibilities:

Conduct comprehensive penetration tests and vulnerability assessments on various systems, networks, and applications to identify weaknesses and potential entry points for malicious actors.
Develop and execute sophisticated attack scenarios and simulations to emulate real-world threats and assess the resilience of cybersecurity controls.
Collaborate with cross-functional teams to discover and analyse security findings, prioritize remediation efforts, and recommend effective mitigation strategies.
Create detailed reports outlining identified vulnerabilities, exploit techniques, and actionable recommendations for improving security posture.
Experience conducting Threat Hunting and mapping the Attack Surface.
Collaborate with the business to review vulnerabilities and advise on remediation priority.
Assist with the management, and assessment of, vulnerabilities reported through Responsible Disclosure and Bug Bounty programmes.
Stay abreast of emerging security threats, attack techniques, and industry best practices to continuously enhance offensive security methodologies.
Provide technical expertise and guidance to internal teams on offensive security techniques, tools, and procedures.
Participate in knowledge-sharing activities, such as training sessions and workshops, to foster a culture of continuous learning and skill development within the organization.

What you'll bring

Bachelor’s degree in computer science, Information Security, or related field, or the combination of demonstrable relevant experience and skills.
One or more certifications such as OSCP, OSCE, GPEC, GPEN, CCSAS, or similar.
Proven experience in offensive security roles, including penetration testing, red/purple teaming, and ethical hacking.
Strong knowledge across network, operating system, cloud, and web application security architecture.
Strong proficiency in utilizing offensive security tools e.g., Metasploit, Burp Suite, Nmap, Nuclei, Kali Linux, etc.
Understanding and experience of utilizing data from Exposure Management services, e.g., Shodan, Censys etc.
Proficiency in at least one programming language and one scripting language.
In-depth understanding of common attack vectors, exploit techniques, and vulnerability assessment methodologies, in particular experience applying MITRE ATT&CK would be an advantage.
Familiarity with industry compliance standards and regulations (e.g., PCI DSS, ISO 27001, GDPR, etc.).
Any experience with CBEST or TIBER assessment frameworks would be desirable.
Excellent analytical skills with the ability to assess complex systems and identify security gaps

About the team

To learn more about our winning teams, check out our world-class teams that own it every day.

What makes a Worldpayer

What makes a Worldpayer? It’s simple: Think, Act, Win. We stay curious, always asking the right questions and finding creative solutions to simplify the complex. We’re dynamic, every Worldpayer is empowered to make the right decisions for their customers. And we’re determined, always staying open and winning and failing as one.

Does this sound like you? Then you sound like a Worldpayer. Apply now to write the next chapter in your career.

#LI-AP1

Privacy Statement

Worldpay is committed to protecting the privacy and security of all personal information that we process in order to provide services to our clients. For specific information on how Worldpay protects personal information online, please see the Online Privacy Notice.

Sourcing Model

Recruitment at Worldpay works primarily on a direct sourcing model; a relatively small portion of our hiring is through recruitment agencies. Worldpay does not accept resumes from recruitment agencies which are not on the preferred supplier list and is not responsible for any related fees for resumes submitted to job postings, our employees, or any other part of our company.

#pridepass

Apply now

Our Benefits

Explore the benefits we offer in Romania

My Health
We offer a comprehensive, company-funded medical plan, including dental coverage, to protect and promote you and your partner's health.
My Money
We offer access to a pension scheme to help you prepare for your future.
My Lifestyle
We offer Employee Assistance Programs to support through any changes that matter to you.
My Family
Our family inclusion network offers support for Worldpayers raising families and caring for family members.
My Protection
We provide life and disability insurance to support you and your family when you need it most.
My Time Off
We offer paid time off, public holidays and sick days, so you can rest, recharge and spend time on what matters most.
My Specialized Support
We reimburse for your gym membership.

Application steps

Submit Your Application

Here's where we'll learn a little about you, why you want to join Worldpay, and why you'd be a good addition to our team. You'll also need to upload your resume and a cover letter too.

Application Review

Once you’ve submitted your application, Worldpayers will review it and see if you’re a good match for the role, team and culture. If you’re successful, we'll invite you for an interview where we can get to know each other better.

Interview with a Worldpayer

This is the time where we get to know you better, and your opportunity to learn more about us. The best way to thrive is to bring your whole self to the conversation. We’ll ask about your skills and experiences, as well as your career aspirations. Depending on the role, you might have multiple interviews with various Worldpayers.

Offer and Onboarding

The exciting part! If you’re the best candidate, your recruiter will be in touch to confirm your offer. If you accept, we’ll walk you through the next steps of what you can expect during your background check and onboarding process to get you ready to become an official Worldpayer.

Like what you see?

Here's some more opportunities we think you might like.

Software Architect - C#/.NET
Bucharest, Romania
Information Technology and Cyber
Senior Enterprise Solution Architect
Bucharest, Romania
Information Technology and Cyber
Platform and Automation Engineer
Bucharest, Romania
Information Technology and Cyber
Senior Linux and Automation Engineer
Bucharest, Romania
Information Technology and Cyber
Senior Oracle Database Administrator
Bucharest, Romania
Information Technology and Cyber

Group of men and women outside on a terrace with a cloudy sky

Find your future role and become a WorldpayerFind future role and become a Worldpayer

Find your Worldpay career

Offensive IT Security Engineer / Penetration Tester

Job Description

My Health

My Money

My Lifestyle

My Family

My Protection

My Time Off

My Specialized Support

Find your future role and become a WorldpayerFind your future role and become a Worldpayer

Find your future role and become a WorldpayerFind future role and become a Worldpayer