🛡️ Job Title: Penetration Tester
Location: Mons, Belgium (80% on-site, 20% in other NATO countries)
Duration: Until 31 December 2025, with extension options for 2026, 2027, and 2028
Rate: €600/day
Clearance Required: NATO Secret or UK SC
Languages: English (required), French (desirable)
🔍 Role Overview
Join the Penetration Testing Section of a key NATO programme, where you’ll contribute to the cybersecurity posture of international defence systems. You'll work in short agile sprints to deliver infrastructure and application-level penetration testing, security design reviews, and strategic input at both technical and executive levels.
🛠️ Key Responsibilities
- Conduct infrastructure, web, and application-level penetration testing, including COTS solutions, using defined methodologies.
- Engage in kick-off and planning meetings with stakeholders to scope and align expectations for testing.
- Follow standardised procedures, workflows, and methodologies defined by technical leads.
- Write clear and concise technical reports in fluent English, using templates and reporting tools.
- Present results and insights to both technical teams and senior leadership (including flag officers).
- Provide expert-level security design reviews in accordance with NATO policies.
- Stay up to date on emerging threats, technologies, and industry standards.
- Work in one-week agile sprints, reporting progress and deliverables consistently.
- Attend daily stand-ups, sprint planning, and other required meetings (onsite and/or via secure video conferencing).
- Deliver a final Project Closure Report summarising activities and outcomes.
✅ Required Qualifications & Skills
- Education: Bachelor’s degree in IT or related field.
- Experience: Minimum of 3 years' hands-on experience in:
- Web and infrastructure penetration testing
- Network security architecture design
- Security vulnerability assessments (OS, software, protocols, networks)
- System and network administration (UNIX and Windows)
- Penetration testing tools, techniques, and methodologies
- Risk evaluation and mitigation planning
- Scripting (Python, Go, PowerShell, Bash/KSH/CSH)
- Technical Knowledge:
- Authentication and security protocols
- Cryptography and malware protection
- Application security
⭐ Desirable Skills & Certifications
- Professional certifications such as: OSCP, OSCE, OSWE, GPEN, CREST, GXPN, GWAPT, or equivalent
- Familiarity with risk analysis methodologies
- Experience in international, multi-cultural (preferably military/civilian) environments
- Exposure to Agile methodologies
- Working knowledge of NATO structure and operations
🛂 Additional Requirements
- Must hold a valid NATO Secret or UK SC clearance.
- Must be eligible to work on-site in Mons and travel within NATO countries.
- Consultant must provide a hand-signed attestation confirming availability.
💬 Interested?
Apply with your updated CV by 12 August 2025