🤖 15+ AI Agents working for you. Find jobs, score and update resumes, cover letter, interview questions, missing keywords, and lots more.
Cookies & analytics consent
We serve candidates globally, so we only activate Google Tag Manager and other analytics after you opt in. This keeps us aligned with GDPR/UK DPA, ePrivacy, LGPD, and similar rules. Essential features still run without analytics cookies.
Read how we use data in our Privacy Policy and Terms of Service.
🤖 15+ AI Agents working for you. Find jobs, score and update resumes, cover letter, interview questions, missing keywords, and lots more.
ICT Strypes • Bulgaria
Role & seniority: Senior Penetration Tester (4+ years of experience in pentesting or similar)
Stack/tools: Burp Suite, Nmap, Metasploit, SQLmap, ffuf; Linux & Windows; TCP/IP, DNS, HTTP/S, TLS; OWASP Top 10, MITRE ATT&CK; Active Directory; scripting (Python, Bash, PowerShell)
Conduct technical penetration tests (scoping, execution, documentation)
Identify, analyze, and exploit vulnerabilities across networks, systems, and web; perform recon and attack-path analysis
Communicate findings to technical and management stakeholders; map findings to OWASP/CWE/CVE/MITRE ATT&CK; prepare structured security reports; retest fixes
4+ years in pentesting or similar
Strong knowledge of OWASP Top 10, MITRE ATT&CK; modern attack surfaces
Experience with infrastructure, web, and/or mobile testing; OS, network, AD, authentication technologies
Proficiency with Burp Suite, Nmap, Metasploit, SQLmap, ffuf
Linux/Windows, scripting (Python, Bash, PowerShell); English (fluent)
Certifications (OSCP, OSWE, OSWP, OSEP, OT etc.); Hack The Box credentials
Technical degree or equivalent practical experience
Location & work type: Offices in Sofia, Plovdiv, Burgas, Varna; remote work from anywhere in Bulgaria; flexible hours; hybrid/remote options available
ICT Strypes is a company with extensive experience in software development. With a team of over 700 people, we take ownership of application roadmaps for our clients and structure their overall application landscape. Founded in 2008 as a small startup, ICT Strypes became part of the Dutch ICT Group in 2014. The ICT Group, with a history of delivering IT solutions since 1978, now has subsidiaries in the Netherlands, Bulgaria, Portugal, Germany, and Sweden. Our teams consist of talented hard-working professionals who love sharing their knowledge, experience, and joyous moments with their colleagues! You can join us at our offices in Sofia, Plovdiv, Burgas, and Varna, or choose to work remotely from anywhere in Bulgaria.
Position Description As a Penetration Tester, you will conduct security assessments on various applications and systems to identify vulnerabilities and recommend corrective measures. This role is ideal for professionals who enjoy real-world attack simulations, exploitation, and technical depth, and want to work in a collaborative environment where knowledge sharing and continuous growth are highly valued.
Offensive Security: OSCP, OSWA, OSWP, OSEP, OSWE
Hack The Box: CPTS, CBBH, CWEE
Zero-Point Security: CRTO, CRTL
Altered Security / Penetration Tester Academy: CRTP, CRTI
Technical degree or equivalent practical experience.
after each year worked you get additional paid annual leave (1 per year, max. 25 days total);
after the third year, you can get a budget for a car or be included in a bonus program;
after the fifth year, you will receive a one-time holiday bonus;
Employee recognition program;
Technical and personal learning opportunities;
Quick onboarding process;
Personal freedom to solve complex problems.
If you think this is the right challenge for you, please send us your CV. All applications will be treated as strictly confidential, and only short-listed candidates will be contacted. Thank you for applying!