🤖 15+ AI Agents working for you. Find jobs, score and update resumes, cover letter, interview questions, missing keywords, and lots more.
Cookies & analytics consent
We serve candidates globally, so we only activate Google Tag Manager and other analytics after you opt in. This keeps us aligned with GDPR/UK DPA, ePrivacy, LGPD, and similar rules. Essential features still run without analytics cookies.
Read how we use data in our Privacy Policy and Terms of Service.
🤖 15+ AI Agents working for you. Find jobs, score and update resumes, cover letter, interview questions, missing keywords, and lots more.
TRUEBOND • Lisbon, Portugal
Role & seniority: Senior Penetration Tester (3+ years in penetration testing/offensive security)
Stack/tools: Web/mobile/API/network pentesting; Burp Suite, Metasploit, Nmap, Nessus; Linux/Windows; OWASP Top 10; familiarity with cloud pentesting (AWS/Azure/GCP) as nice-to-have
Conduct penetration tests across web apps, mobile apps, APIs, and networks; perform vulnerability assessments
Identify, validate, and document security issues with ethical, controlled reporting; produce technical and executive reports with mitigations
Collaborate with Development, Infrastructure, and Security teams on remediation; stay current on threats and tooling; support Red/ Purple Team exercises when applicable
3+ years in penetration testing/offensive security
Hands-on testing of web, mobile, API, and network surfaces
Strong networking knowledge, Linux/Windows, and application architecture
OWASP Top 10 awareness; proficiency with pentest tools; good English
OSCP, CompTIA PenTest+, CHFI; cloud pentesting (AWS/Azure/GCP)
Scripting (Python/Bash/PowerShell/JavaScript); secure code review; CTFs/bug bounties
Location & work type: Hybrid on-site in Lisbon or Porto (2–3 days per week); established IT company with long-term stability
About the Job
We are reinforcing a cybersecurity team from a client with a Penetration Tester (Ethical Hacker) to run controlled security tests across applications and infrastructure, document findings clearly, and help teams reduce real risk. This is a role with an hybrid setup with on-site presence (2 to 3 times per week) in Lisbon or Porto. Key Responsibilities
Run penetration tests on web applications, mobile apps, APIs, and internal/external networks Perform vulnerability assessments and offensive security testing activities Identify, validate, and document security issues in an ethical and controlled way Produce technical reports and executive summaries, including mitigation recommendations Work closely with Development, Infrastructure, and Security teams to support remediation Stay up to date on new vulnerabilities, attack techniques, and tooling Support Red Team or Purple Team style exercises when applicable
Main Requirements
Degree in Computer Science, Cybersecurity, or a related field (or equivalent experience) At least 3 years of experience in penetration testing or offensive security roles Hands-on experience testing web, mobile, API, and network surfaces Good knowledge of networking, common protocols, Linux and Windows, and application architecture Knowledge of OWASP Top 10 and security testing methodologies Comfortable using pentesting tools such as Burp Suite, Metasploit, Nmap, Nessus (and similar) Good level of english
Nice to have: OSCP, CompTIA Pentest+, CHFI; cloud pentesting (AWS/Azure/GCP); scripting (Python/Bash/PowerShell/JavaScript); secure code review; CTFs or bug bounties
Personality Traits
High integrity; Hands-on attitude; Proactive; Detail oriented;
What Can You Expect
You will join an established IT company with long-term stability, working on challenging security projects with room for growth. You can expect continuous training, close onboarding support from HR and the technical team, and opportunities to participate in events and knowledge sharing.
Show more Show less