About Bitdefender
Bitdefender is a global cybersecurity leader delivering cutting-edge threat prevention, detection, and response solutions to millions of consumers and enterprise environments worldwide. Trusted by organizations across various industries, Bitdefender is recognized for its innovation in cybersecurity, advanced threat intelligence, and commitment to helping businesses stay resilient against evolving cyber threats.
About the Role
We are looking for an Associate Security Consultant / Penetration Tester to join our growing cybersecurity consulting team. In this role, you will support the delivery of offensive security engagements across web, mobile, infrastructure, and emerging technology environments.
You will work closely with senior consultants, delivery managers, and clients to perform technical security assessments, contribute to cybersecurity initiatives, and deliver high-quality client outcomes. This role is ideal for individuals who are passionate about offensive security and eager to deepen their hands-on penetration testing expertise within a fast-paced consulting environment.
Key Responsibilities
- Perform penetration testing assessments across web applications, mobile applications, and infrastructure environments with minimal guidance
- Support specialized security assessments such as:
- Cloud security assessments
- Smart contract audits
- Secure code reviews
- Other technical cybersecurity assessments, with guidance from senior team members
- Deliver technical presentations during client engagements for the components owned within the project scope
- Work closely with the Delivery Management team to ensure timely and successful delivery of billable work
- Collaborate with the marketing team on cybersecurity-related initiatives, including blogs, webinars, and thought leadership activities
- Support client engagement processes for assigned projects, including:
- Kick-off meetings
- Clarification of technical or logistical requirements
- Ongoing project coordination
- Take ownership of day-to-day project activities in delivering cybersecurity services to clients
- Stay up to date with industry trends, emerging threat vectors, and evolving offensive security techniques
- Work closely with clients to understand their current and future cybersecurity needs relevant to our services
- Utilize internal systems and security tools (e.g. vulnerability scanners, reporting platforms, code analysis tools) to support delivery of client engagements
Requirements
- Diploma or above in Computer Science, Information Security, or related fields
- At least 1 year of experience in:
- Web application penetration testing
- Mobile application penetration testing
- Other related technical cybersecurity assessments (e.g. smart contract reviews, secure code reviews)
- Strong understanding of offensive security concepts, methodologies, and testing approaches
- Hands-on experience with offensive security tools such as:
- Burp Suite
- Nmap
- Nessus
- Other penetration testing and vulnerability assessment tools
- Good understanding of mobile security testing techniques, including:
- Static and dynamic analysis
- Reverse engineering
- Mobile security control bypass
- Frida-based runtime instrumentation
- Ability to write detailed, concise, and high-quality technical reports
- Demonstrated ability to collaborate effectively within teams to deliver complex projects
- Strong communication skills with the ability to engage both technical and non-technical stakeholders
Preferred Qualifications
- Offensive Security Certified Professional (OSCP) certification preferred
- CREST Registered Tester certification preferred
- Exposure to cloud security, DevSecOps, or secure development practices is an advantage
