Penetration Tester Milano

Penetration Tester
Milano
Lombardia, Milano

Our client, a leading Italian telecommunications company committed to driving innovation and transforming connectivity experiences for individuals and businesses through cutting-edge technology, is seeking to hire:Penetration Tester(Milan - Hybrid Working)Company: TelcoExperience: Minimum 2 years in CybersecuritySkills: Penetration testing, vulnerability identification and remediation, cybersecurity compliance and governance, application security solutions, Identity Management protocols (OpenID, OAuth, SAML), secure development lifecycle (SDLC), risk management, cloud security, security by design, and regulatory frameworks (GDPR, NIS2, ISO 27001). Our client is seeking a skilled and versatile Penetration Tester to join their cybersecurity team.

Beyond identifying and mitigating vulnerabilities, the ideal candidate will be open to supporting broader security efforts, including compliance with cybersecurity regulations and contributing to governance frameworks.

As a Pen Tester, you will play a critical role in strengthening the organization's overall security posture and ensuring alignment with industry standards and best practices. Key ResponsibilitiesPlan and execute penetration tests on applications, systems, and infrastructures to identify vulnerabilities and simulate real-world attack scenarios. Prepare detailed reports outlining discovered vulnerabilities, their impact, and recommendations for remediation. Collaborate with internal teams to implement and verify effective remediation measures. Stay updated on emerging cybersecurity threats, tools, and best practices. Support the development and implementation of secure development lifecycle processes, integrating security into every phase of software development. Conduct re-tests to ensure the resolution of identified vulnerabilities. Contribute to compliance efforts by adhering to relevant regulatory and organizational standards, such as GDPR, NIS2, or local cybersecurity regulations. Assist in developing and maintaining cybersecurity governance frameworks, policies, and procedures. Provide insights and recommendations on risk management and cybersecurity governance strategies. Collaborate with cross-functional teams, including software development and IT operations, to provide security guidance and address risks. What You'll SubmitRegular vulnerability assessment reports. Clear and actionable recommendations to mitigate identified risks. Documentation of all penetration testing activities, tools, and findings. Inputs and analysis for compliance and governance documentation when required. Required SkillsBachelor's degree in Computer Science, Cybersecurity, or a related STEM field. At least 3 years of experience in penetration testing or related cybersecurity roles. Strong knowledge of security assessment tools and frameworks (e. g. , Metasploit, Burp Suite, OWASP). Familiarity with security standards and protocols (e. g. , OpenID, OAuth, SAML). Experience with compliance frameworks and governance models is a plus (e. g. , ISO 27001, GDPR, or NIS2). Certifications such as OSCP, CEH, GPEN, or CRISC are highly desirable. Soft SkillsExcellent problem-solving and analytical skills. Strong verbal and written communication skills to present findings clearly to technical and non-technical stakeholders. A team-oriented mindset with the ability to work independently when needed. Attention to detail and a strong commitment to deadlines. Flexibility and openness to take on responsibilities beyond penetration testing, including regulatory and governance tasks. What We OfferA dynamic, innovation-driven work environment. Flexible and competitive smart-working policies. No clock-in/out requirements and flexible working hours. Competitive meal vouchers and exclusive company service benefits. Short Fridays to promote work-life balance. Continuous learning through programs like Digital Academy, mentoring, and certifications. Inclusivity initiatives supporting caregivers, youth, and female participation in STEM careers. Comprehensive insurance coverage (health, life, and non-work accidents) and well-being programs. Commitment to sustainability and corporate volunteering through the "Future Week" initiative. Access to cultural and sporting activities for your free time.