Penetration Tester / Ethical Hacker Consultant

Timestamp Group aggregates several leading Portuguese IT solutions and services companies around the concepts of excellence and knowledge sharing. We are committed to technological leadership, based on the quality of our service and technological solutions, supported by continuous training and certification. 

Role: Penetration Tester / Ethical Hacker Consultant 

Job Responsibilities: 

• Conduct penetration tests on networks, web applications, APIs, mobile apps, and infrastructure in accordance with industry standards (e.g., OWASP, PTES, NIST). 

• Simulate real-world attack scenarios to identify security gaps and exploit potential vulnerabilities. 

• Deliver detailed technical reports outlining findings, risk levels, and recommended remediation actions. 

• Communicate results and recommendations to both technical and non-technical stakeholders. 

• Collaborate with client teams to validate fixes and re-test mitigated vulnerabilities. 

• Stay up to date on the latest security threats, attack techniques, and offensive security tools. 

• Assist in the development of tailored security assessment strategies based on client needs. 

• Contribute to internal knowledge sharing and support the training of junior consultants when needed. 

Technical Skills Required: 

• Proficiency in penetration testing tools such as: 

• Metasploit, Burp Suite, Nmap, Nessus, Nikto, Hydra, SQLmap, etc. 

• Strong knowledge of: 

• OWASP Top 10, MITRE ATT&CK, CWE/SANS Top 25 

• Web application security, network protocols, and operating system internals (Linux/Windows) 

• Experience with scripting or programming languages (e.g., Python, Bash, PowerShell) is a plus. 

• Familiarity with red teaming or adversary simulation engagements is an advantage. 

• Certifications such as OSCP, eJPT, CEH, GWAPT, or CRTP are highly valued. 

Soft Skills: 

• Strong analytical thinking and attention to detail. 

• Excellent communication and reporting skills. 

• Ability to explain technical concepts clearly to diverse audiences. 

• Proactive and adaptable, capable of managing multiple engagements. 

• Comfortable working both independently and in collaborative consulting teams. 

Place: Lisbon/Porto (hybrid)