Junior Penetration Tester

CyberProof is a cyber security services and platform company whose mission is to help our customers react faster and smarter – and stay ahead of security threats, by creating secure digital ecosystems. CyberProof automates processes to detect and prioritize threats early and respond rapidly and decisively.

CyberProof is part of the UST family. Some of the world’s largest enterprises trust us to create and maintain secure digital ecosystems using our comprehensive cyber security platform and mitigation services.

We're seeking a passionate Junior Penetration Tester to join our team. You will be responsible for assisting in identifying and addressing security vulnerabilities in various computer networks, systems, and applications. This role involves conducting vulnerability assessments, simulating cyberattacks, and collaborating with senior security professionals to help secure an organization's digital asset.

Main tasks and Accountabilities :

• Perform vulnerability scans and basic penetration testing on networks, web applications, mobile applications, and other systems.
• Identify common vulnerabilities (e.g., OWASP Top 10) and misconfigurations in IT infrastructure.
• Participate in penetration testing exercises under the guidance of senior pentesters.
• Utilize automated tools and manual techniques to exploit potential vulnerabilities.
• Document identified vulnerabilities, potential impacts, and recommended mitigation strategies.
• Help prepare detailed reports for senior team members and stakeholders, including technical staff and management.
• Update and manage penetration testing tools and software.
• Assist in setting up and maintaining test environments.
• Keep up to date with the latest security threats, tools, and techniques.
• Participate in training sessions, certifications, and knowledge-sharing activities.

What do we expect from you?

• Familiarity with basic networking concepts, operating systems (Windows, Linux), and programming / scripting languages (Python, Bash, etc.).
• Understanding of common vulnerabilities and security testing methodologies.
• Exposure to penetration testing tools (e.g., Nmap, Burp Suite, Metasploit, Wireshark).
• Analytical thinking and problem-solving skills.
• Strong written and verbal communication skills for reporting findings.
• Eagerness to learn and adapt to new cybersecurity challenges.
• Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or related field (or equivalent experience).
• Certifications (nice to have): CompTIA Security+, Certified Ethical Hacker (CEH), or equivalent.
• Some hands-on experience through internships, labs, or personal projects is a plus.

What do we offer?

• 23 days of Annual Leave plus the 24th and 31st of December as discretionary days.
• Remote work within Spain. Preferred location Barcelona as part of the team is in Barcelona and so you could benefit from different team building activities that we do in the team.
• Numerous benefits (Health Care Plan, teleworking compensation, Life and Accident Insurances).
• Free access to several training platforms.
• Professional stability and career plans.
• Referral program.
• The option to pick between 12 or 14 payments along the year.
• Real Work Life Balance measures (flexibility, WFH or remote work policy, compacted hours during summertime…)