Inetum is a European leader in digital services. Inetum’s team of 28,000 consultants and specialists strive every day to make a digital impact for businesses, public sector entities and society. Inetum’s solutions aim at contributing to its clients’ performance and innovation as well as the common good.  

Present in 19 countries with a dense network of sites, Inetum partners with major software publishers to meet the challenges of digital transformation with proximity and flexibility.  

Driven by its ambition for growth and scale, Inetum generated sales of 2.5 billion euros in 2023.  

We are looking for a Penetration Tester / Red Team Analyst to join our offensive security team, with direct responsibility for executing penetration tests, conducting attack simulations, and supporting Red Team activities. The professional will be responsible for identifying vulnerabilities, exploiting security weaknesses, and contributing to the continuous strengthening of the organization’s defensive posture, ensuring effective communication with internal teams and clients.

Key Responsibilities:

• Execute end‑to‑end penetration tests, covering reconnaissance, exploitation, post‑exploitation, and reporting.
• Participate in Red Team exercises, contributing to realistic attack simulations.
• Identify, exploit, and validate vulnerabilities across systems, applications, infrastructures, and networks.
• Use offensive security tools and analysis frameworks (e.g., OWASP, MITRE ATT&CK).
• Produce clear technical and executive reports with remediation recommendations.
• Interact with internal teams (SOC, Blue Team, Infrastructure, Development) and with clients to communicate findings and clarifications.
• Contribute to the evolution of the methodologies, techniques, and tools used by the Red Team.

• Minimum 2 years of experience in Pen Testing / Ethical Hacking / Red Team.
• Proven ability to independently execute pentests, including: Reconnaissance, Vulnerability Scanning, Exploitation & Post‑Exploitation e Reporting.
• Solid knowledge of networks, operating systems (Windows/Linux), web applications, and protocols.
• Experience with pentesting tools (e.g., Metasploit, Burp Suite, Nmap, etc.).
• Mastery of offensive methodologies and frameworks (e.g., OWASP, MITRE ATT&CK).
• Ability to interpret and explain vulnerabilities (CVEs, CWE, CVSS).
• Clear and effective communication with both technical teams and clients.
• Autonomy and ability to prioritize tasks without constant supervision.
• Critical thinking, attention to detail, and an analytical mindset.
• Collaborative spirit to work with multidisciplinary teams (Red/Blue/SOC).
• Proactivity, curiosity, and willingness to keep up with new techniques and emerging threats.

• Workplace type: Hybrid (max. of 3 times per week in the office);
• Location: Picoas, Lisboa.