Penetration Tester / Red Team Specialist (Offensive Security)

ImpacT Hire is supporting one of our clients – an international technology organization currently building a new Offensive Security team in Bulgaria.
The team was formed recently and is now expanding rapidly, with plans to grow from a small core group to 15–20 specialists in the short term. The focus is strictly hands-on offensive security, penetration testing, and red teaming – not audit or checklist-based consulting.

This role is ideal for experienced professionals who enjoy real-world attack simulations, exploitation, and technical depth, and want to work in a collaborative environment where knowledge sharing and continuous growth are highly valued.

Responsibilities:
➢ Perform technical penetration tests – including scoping, execution, and documentation;
➢ Conduct red team simulations and adversary-style attacks against infrastructure, applications, and user environments;
➢ Identify, analyze, and exploit vulnerabilities across networks, systems, and web/mobile applications;
➢ Perform reconnaissance, information gathering, and attack path analysis;
➢ Prepare clear, detailed technical reports with actionable remediation recommendations;
➢ Communicate findings effectively to both technical and management stakeholders;
➢ Work with diverse environments (Operating Systems, Networks, Active Directory, authentication technologies);
➢ Contribute to team knowledge sharing and mentor junior colleagues when needed.

Requirements:
➢ 3+ years of hands-on experience in Penetration Testing / Offensive Security / Red Teaming;
➢ Strong practical experience with real-world exploitation techniques and attack methodologies;
➢ Good understanding of OWASP Top 10, MITRE ATT&CK framework, and modern attack surfaces;
➢ Experience with infrastructure, web, and/or mobile testing;
➢ Fluent English (written and spoken);
➢ High motivation, ownership mindset, and willingness to continuously improve skills.

Nice to have:
➢ Familiarity with automation of security testing;
➢ Certifications (strong advantage, not mandatory):
– Offensive Security: OSCP, OSWA, OSWP, OSEP, OSWE
– Hack The Box: CPTS, CBBH, CWEE
– Zero-Point Security: CRTO, CRTL
– Altered Security / Penetration Tester Academy: CRTP, CRTI
➢ Technical degree or equivalent practical experience.

What We Offer:
➢ 31+ days paid annual leave;
➢ Premium health & dental insurance;
➢ Food vouchers;
➢ Multisport card;
➢ Coverage for certifications, trainings, and conferences.

If offensive security for you means real attacks, real techniques, and real technical depth – rather than checklists – this role will give you the right environment to practice your craft.