×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer

Senior Penetration Tester

Job in 1000, Brussels, Bruxelles-Capitale, Belgium
Listing for: Brainbridge
Full Time position
Listed on 2026-01-10
Job specializations:
  • IT/Tech
    Cybersecurity, Systems Engineer
  • Engineering
    Cybersecurity, Systems Engineer
Job Description & How to Apply Below
We are looking for a Senior Penetration Tester to execute high‑impact security assessments across infrastructure, applications, cloud and critical operational technologies. The goal is to perform threat‑led penetration testing aligned with DORA TLTP, identify vulnerabilities in complex environments, validate technical and business controls, and support the organization in strengthening its cyber resilience. In this role, you will apply deep offensive security expertise across IT and OT, while working closely with technical teams and stakeholders.

Responsibilities

Conduct infrastructure, application, cloud, and OT/ICS penetration tests in line with DORA TLTP, using white‑box, grey‑box, and black‑box approaches for internal and external attack scenarios.

Perform full‑spectrum testing including discovery, enumeration, vulnerability mapping, exploitation, privilege escalation, lateral movement, network‑based testing, and (when authorized) DoS or host‑based techniques.

Assess Windows, Linux, Solaris, enterprise networks, cloud environments (Azure), APIs, microservices, ESB/API‑gateway architectures, databases, and proprietary systems.

Evaluate the security of SCADA/HMI systems and industrial protocols (BACnet, Modbus, OPC UA, Profinet, MQTT) across critical infrastructure.

Validate technical and business controls, including anti‑fraud measures, and deliver regulator‑ready reports aligned with DORA. Collaborate with stakeholders, support remediation, and advise on improving architecture, segmentation, identity models, and secure development practices.

Requirements

10+ years experience in infrastructure & application pen testing, plus 5+ years in critical infrastructure (ICS/SCADA/OT).

Expertise in network technologies (Ethernet, Wi‑Fi, Fibre Channel, Bluetooth), authentication (Kerberos, NTLM, LDAP, SAML, OAuth, OpenID Connect), encryption, PKI, and defense‑in‑depth architecture across hybrid/cloud topologies.

Strong skills in application testing: web apps, APIs, microservices, fat clients, middleware (ESB, API‑gateway), and secure development patterns (.NET, Java).

Deep knowledge of Azure cloud security, hybrid connectivity, identity, segmentation, microservices, and interoperability.

Proficient in Python, Bash, Power Shell and advanced pentest tooling (Nmap, Burp Suite, Nessus, Metasploit, Wireshark).

Experience with threat‑led testing frameworks, especially DORA TLTP, including reporting to regulatory standards.

Assets: reverse engineering (OSEE‑level or similar), malware development, red teaming, EDR evasion, custom C2 development.

Analytical, independent, communicative, discreet, and collaborative mindset.

Languages:

English, French, and Dutch.
Position Requirements
10+ Years work experience
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search