About us
act digital is an international consulting and engineering group that supports its clients in their digital transformation projects.
Operating in 12 countries with more than 5,600 employees, we leverage our expertise to address their challenges in software development, cybersecurity, data, cloud, and AI.
Our ambition: to become the trusted technology partner of the most innovative companies by designing and securing systems that enhance their performance and resilience.
Joining act digital Spain means becoming part of an agile and committed organization that works closely with its clients to turn ideas into concrete results, with pragmatism and high standards.
Job Description
You will join our Cybersecurity division, working within a team of experts specialized in offensive security, delivering high-value penetration testing missions for international clients.
As a Pentester / Offensive Security Consultant, you will operate across a wide range of environments (applications, networks, cloud, IoT) with end-to-end responsibility for your audits, from scoping to reporting. You will also contribute to supporting project teams in remediation efforts and mentoring junior auditors.
Your responsibilities will include:
- Perform penetration tests on application environments (Web, Mobile, thick client).
- Conduct security audits on internal infrastructures (LAN, Active Directory).
- Assess cloud environments (Azure, AWS, GCP), wireless systems (Wi-Fi, IoT, SDR), and devices (PCs, smartphones, tablets).
- Use and master penetration testing tools (Nessus, BurpSuite / OWASP ZAP, Metasploit, etc.).
- Perform configuration reviews on common technologies.
- Conduct secure code reviews (mainly web applications).
- Manage end-to-end audit projects (scoping, planning, execution, reporting, and presentation).
- Follow up on remediation plans and support teams in implementing security recommendations.
- Mentor and support junior auditors in their skill development
Required qualifications
- Master's degree (Engineering school or University) in Computer Science or Cybersecurity.
- At least 3 years of experience in cybersecurity, with strong exposure to offensive security.
- Proven autonomy in application security testing (Web/Mobile) and internal audits (Active Directory).
- Experience managing penetration testing engagements end-to-end.
- Comfortable working in an international environment.
Skills & Knowledge:
- Strong expertise in application penetration testing (Web, Mobile).
- Solid knowledge of offensive security practices.
- Experience with network security and Active Directory environments.
- Familiarity with Cloud platforms (Azure, AWS, GCP).
- Ability to perform secure code reviews.
- Good understanding of IT architectures and associated risks.
- Fluent English and Spanish required (written and spoken).
