Penetration tester 10

The Hague Deadline: 17-06-2026 Posted: 02-06-2026 #16902

Penetration tester, C004912

The Penetration Tester supports NATO cyber security operations by conducting penetration testing, participating in Red/Blue Team activities during military exercises, providing security assessments and consultancy, and supporting security accreditation processes across NATO organizations.

Key Duties

Penetration Testing & Security Assessments

  • Conduct web application, infrastructure, and application-level penetration testing.
  • Identify and assess security vulnerabilities in operating systems, software, protocols, and networks.
  • Perform security design reviews to ensure compliance with NATO security policies and directives.

Cyber Operations Support

  • Lead or participate in Red Team and Blue Team activities during NATO military exercises.
  • Support cyber defence testing and validation activities.

Security Consultancy

  • Provide security advice and consultancy to projects, plans, and other NATO entities.
  • Assist with risk assessment and recommend mitigation measures.

Stakeholder Management

  • Coordinate with:
    • NCIA Configuration Control Board (CCB)
    • Security Accreditation Boards (SABs)
    • NATO Security Accreditation Authorities (NSAA)
    • Internal NCIA units involved in accreditation processes
  • Maintain effective communication with internal and external stakeholders.

Reporting & Briefing

  • Prepare clear technical and executive-level security reports.
  • Present penetration testing findings and recommendations to both technical audiences and senior leadership, including Flag Officers.
  • Deliver remediation recommendations and risk mitigation plans.

Coordination

  • Work closely with the Head of the Penetration Testing Cell.
  • Ensure proactive collaboration across NATO and NCIA stakeholders.

Required Skills & Experience

Essential Experience (3 Years)

  • Web application penetration testing.
  • IT infrastructure penetration testing.
  • Network security architecture design.
  • Security vulnerability assessment and analysis.

Technical Knowledge

  • Operating systems: UNIX/Linux and Windows administration.
  • Authentication and security protocols.
  • Cryptography.
  • Application security.
  • Malware infection techniques and protection technologies.
  • Security products and emerging security technologies.

Penetration Testing Expertise

  • Experience with industry-standard penetration testing tools and methodologies.
  • Knowledge of recognized testing frameworks and techniques.

Scripting & Automation

Proficiency in at least one of:

  • Python
  • Perl
  • Ruby
  • Bash / Shell scripting (ksh, csh)

Risk Management

  • Ability to assess risks and develop mitigation strategies.
  • Experience producing actionable security recommendations.

Communication & Reporting

  • Strong technical writing skills.
  • Ability to create reports tailored to multiple audiences, including:
    • Executive summaries
    • Technical findings
    • Remediation plans
  • Strong briefing and presentation skills.

Apply for this position

Back