Offensive Security Analyst (Penetration Tester)

Description

Job Summary: We are seeking a Mid-Level Offensive Security Analyst to perform intrusion testing, vulnerability assessments, and support the protection of critical environments, with a focus on continuous development and career growth. Key Highlights: 1. Will be part of a technical team committed to continuous security improvement 2. Solid technical environment with room for learning and career growth 3. Will conduct penetration tests, vulnerability assessments, and generate technical reports #### **About the Offensive Security Analyst (Penetration Tester) Role** **Join a living ecosystem where the future of business is created and experienced every day. Be part of this transformation!** At LUZA Group, passion, perseverance, and the drive to surpass limits define our path to success. Founded in 2006, we are a Portuguese multinational with over 1\.200 talented professionals and a significant volume of business. With presence in strategic markets such as Portugal, Spain, Morocco, Brazil, Mexico, the United States, and China, we deliver innovative solutions in engineering, IT, design, consulting, Industry 4\.0, training, and recruitment. Everything we do is powered by the talent of our people. **This is a moment of growth and opportunity. The future belongs to visionary minds. Join us!** We are looking for a Mid-Level Offensive Security Analyst with experience in intrusion testing (penetration tests) and technical vulnerability assessments of applications, APIs, and infrastructure. You will join a technical team committed to continuous security improvement, directly supporting the identification of real risks and the protection of critical environments; you will also find a solid technical environment focused on continuous development, with space for learning, knowledge exchange with experienced professionals, and career growth.  **Responsibilities and Tasks of the Role****** Plan, execute, and document medium-complexity penetration tests; Perform vulnerability analyses on web systems, APIs, networks, and infrastructure; Create technical reports with evidence and clear remediation recommendations; Support internal teams in understanding risks and revalidating applied fixes; Use frameworks and methodologies such as OWASP, PTES, MITRE ATT\&CK, among others. **Mandatory Requirements****** Minimum of 3 years of experience in Information Security, with a focus on offensive security/penetration testing; Practical knowledge of intrusion testing methodologies (e.g., OWASP Top 10, PTES, MITRE ATT\&CK); Ability to conduct high-quality technical tests and produce well-structured reports; CompTIA Security\+ and/or Burp Suite Certified Practitioner certification; English proficiency. **Preferred Qualifications****** OSCP (Offensive Security Certified Professional) or equivalent certification; Experience with scripting and automation (Python, Bash, PowerShell); Knowledge of exploiting vulnerabilities in cloud environments (AWS, Azure, or GCP); Participation in CTFs, bug bounty programs, or other hands-on offensive security activities.