Principal Penetration Tester
Indexed description
About Truesec – A Leading Cybersecurity Company
Since 2005, Truesec has been a native cybersecurity company, driven by one single purpose: Creating safety and sustainability in a digital world by preventing cyber breach and minimizing impact.
Over the years, we’ve earned the trust of organizations worldwide and gained a strong reputation internationally. Our team consists of dedicated specialists covering the entire spectrum of cybersecurity – with capabilities in Predict, Prevent, Protect, Respond, and Recover.
Today, we employ around 350 employees – and as cybercrime grows, we need to grow. To support that goal, we are now looking for a Principal Penetration Tester who wants to make a difference in our Offensive Security Team.
Offensive Security Team
Truesec’s Offensive Security Team is a group of dedicated cybersecurity specialists working proactively to help organizations protect themselves against cyber breaches by identifying vulnerabilities before they are exploited. As part of this team, you’ll collaborate closely with some of the world’s top security experts, leveraging combined knowledge and experience to conduct penetration tests, security assessments, and advanced red and purple team engagements.
The work is highly technical and focuses on uncovering security weaknesses in enterprise- and cloud environments, including mobile applications, cloud platforms, IOT/OT systems, and both Linux and Microsoft infrastructures. Team members lead assignments from start to finish, maintaining direct contact with customers and driving projects alongside colleagues, all with the shared mission of making a real difference in cybersecurity and contributing to a safer digital world
About The Role
As a Principal Penetration Tester within Truesec’s Offensive Security Team, you will be at the forefront of protecting organizations against advanced cyber threats. This is a unique opportunity to work alongside some of the world’s most dedicated and talented cyber specialists. You will lead and deliver highly complex offensive security engagements—ranging from advanced penetration tests to red and purple team exercises—across enterprise environments, cloud platforms, and specialized domains such as IOT/OT.
Your role extends beyond technical execution: you’ll shape strategic initiatives, guide and mentor teams, and make high-level decisions that influence both Truesec’s direction and our clients’ long-term cyber resilience. You will own key customer deliveries from start to finish, navigate complex and undefined challenges, and continuously develop tools, processes, and solutions critical to our ongoing success. As a Principal, you serve as a guiding star—demonstrating best practices, fostering collaboration, and ensuring projects remain focused and impactful.
Your Background
- At least 10+ years of experience in offensive security, penetration testing, or related fields.
- Recognized as a subject-matter expert with deep and broad expertise across multiple platforms, technologies, and methodologies.
- Proven track record of leading highly complex security assessments and offensive engagements.
- Experience managing critical customer projects, mentoring teams, and contributing to the development of new tools, processes, or services.
- Passion for cybersecurity, continuous learning, and a genuine desire to make a difference for clients and the wider community.
- Extensive experience in penetration testing of enterprise environments.
- Deep knowledge of identifying vulnerabilities in both Windows and Linux systems.
- Advanced skills in network-based penetration tests, credentials extraction, and lateral movement.
- Expertise in penetration testing of mobile applications, IOT/OT systems, and cloud environments (e.g., AWS, Google Cloud, Microsoft Azure).
- Ability to present complex findings to both technical and non-technical audiences, including C-level stakeholders.
- Strategic mindset with the ability to make decisions affecting business direction and customer outcomes.
- Experience in leading projects and mentoring colleagues.
- Sysadmin background or experience managing large-scale IT environments.
- Ability to understand and work with multiple programming languages.
- Full proficiency in at least one programming language.
- Experience with code-assisted/code review-based penetration testing.
- Relevant security certifications (e.g., OSCP, OSCE, CISSP, GIAC).
- Active participation in the offensive security community (e.g., speaking at conferences, contributing to forums or open-source projects).
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search