π€ 15+ AI Agents working for you. Find jobs, score and update resumes, cover letter, interview questions, missing keywords, and lots more.
Cookies & analytics consent
We serve candidates globally, so we only activate Google Tag Manager and other analytics after you opt in. This keeps us aligned with GDPR/UK DPA, ePrivacy, LGPD, and similar rules. Essential features still run without analytics cookies.
Read how we use data in our Privacy Policy and Terms of Service.
π€ 15+ AI Agents working for you. Find jobs, score and update resumes, cover letter, interview questions, missing keywords, and lots more.
GamblingCareers.com β’ Belgrade, Central Serbia, Serbia
Role & seniority: Penetration Testing Team Lead (hands-on leadership, 70β80% technical)
Stack/tools: Burp Suite Pro, Metasploit, Nmap; cloud (AWS/Azure/GCP); Python/Go/PowerShell/Bash for automation; Linux/Windows; Docker/Kubernetes
Build and lead the offensive security function from the ground up (methodologies, reporting, hiring plan)
Perform deep-dive manual penetration testing on high-risk assets; coordinate purple-team exercises with SOC/Blue Team
Collaborate with Application Security, translate findings into threat intelligence, and guide remediation and detection improvements
5+ years hands-on penetration testing across web, mobile, API, and cloud environments
Experience creating offensive security processes/tools from scratch
Strong hands-on capability (70β80%), deep knowledge of OWASP Top 10, SANS Top 25
Experience with purple-team exercises and working with SOC; proficient in industry tools; strong networking, OS, and cloud-native concepts
Excellent communication to convey risk to technical and non-technical stakeholders
OSCP/OSCE/OSWE, CRTP, or SANS GIAC certifications
Experience in fast-growth Gaming/Fintech environments
Location & work type: Office-based role; relocation package available for international candidates; global company with multiple hubs.
BrainRocket is a global company creating end-to-end tech products for clients across Fintech, iGaming, and Marketing. βYoung, ambitious, and unstoppable, we've already taken Cyprus, Malta, Portugal, Poland, and Serbia by storm. Our BRO team consists of 1,300 bright minds creating innovative ideas and products. We donβt follow formats. We shape them. We build what works, launch it fast, and make sure it hits.
We invite a Penetration Testing Team Lead to join our team. It's an office-based role.
Core Mission
To lead and grow the Offensive Security function while maintaining a strong hands-on role. Leverage an attacker mindset to identify critical business logic vulnerabilities and attack paths (kill chains), drive collaboration with Application Security and Security Operations teams, and lead purple team activities.
β Responsibilities
βοΈ Build the Offensive security function from the ground up: define methodologies, reporting standards, and the hiring plan for future team expansion.
βοΈ Recruit, mentor, and develop the team of offensive security engineers, ensuring technical excellence and consistent delivery quality once hired.
βοΈ Perform deep-dive manual penetration testing for complex, high-risk, or business-critical assets, focusing on realistic attack scenarios rather than high-volume "bug-bounty style" findings.
βοΈ Lead and coordinate purple team exercises with the SOC/Blue Team, simulating real-world attacks to validate detection capabilities and tune SIEM/EDR rules.
βοΈ Collaborate closely with the Application Security Team to validate vulnerabilities and guide effective remediation strategies.
βοΈ Translate offensive findings into actionable threat intelligence, TTPs, and recommendations to enhance detection and threat hunting.
βοΈ Act as a subject matter expert in security architecture discussions, secure design reviews, and security code reviews.
βοΈ Stay current with emerging attack techniques, tools, and security trends, and ensure knowledge is shared within the engineering teams.
β Areas Of Ownership
βοΈ 0-to-1 establishment of the offensive security capabilities and team roadmap.
βοΈ End-to-end ownership of penetration testing execution, quality, and reporting.
βοΈ Identification of critical attack paths that threaten the companyβs core business products.
βοΈ Delivery of TTPs and threat-hunting insights for purple team initiatives.
βοΈ Effective cross-team collaboration with Application Security, Security Operations, and Engineering.
β Requirements
βοΈ 5+ years of hands-on experience in Penetration Testing, including web, mobile, API, and cloud environments (AWS, Azure, GCP).
βοΈ Experience building offensive security processes, methodologies, or tools from scratch.
βοΈ Strong "playing coach" mindset: willingness to remain highly hands-on (70-80%) while setting up the function.
βοΈ Deep understanding of penetration testing methodologies and frameworks (OWASP Top 10, SANS Top 25).
βοΈ Demonstrated experience contributing to purple team exercises and working closely with SOC to improve detection logic.
βοΈ Strong hands-on experience with industry-standard tools (Burp Suite Pro, Metasploit, Nmap, etc.) and ability to develop custom automation (Python, Go, PowerShell, Bash).
βοΈ Solid knowledge of network protocols (TCP/IP, HTTP/S, DNS), operating systems (Linux, Windows), and cloud-native architectures (Docker, Kubernetes).
βοΈ Excellent communication skills, with the ability to clearly present critical business risks to both technical and non-technical stakeholders.
β Nice To Have
βοΈ Advanced certifications such as OSCP, OSCE, OSWE, CRTP, or SANS GIAC.
βοΈ Experience in fast-growing companies (Gaming/Fintech) with exposure to industry-specific security challenges.
π 24 vacation days annually.
π€ 6 sick days without a medical certificate.
π₯ Premium Health Insurance (coverage up to 5,000 EUR annually).
π Special occasion gifts: birthday, wedding, newborn.
π Corporate events: international parties, team buildings, activities.
π Career growth opportunities in a fast-growing company.
βοΈ Relocation package for international candidates.
ποΈ Sports package (FitPass membership).
π£οΈ Language classes: Serbian & English (company-covered).
Bold moves start here. Make yours. Apply today!
By submitting your application, you agree to our Privacy Policy.