This job operates on a hybrid model, requiring you to be based in Bulgaria and work from there.
YOUR MISSION
Perform advanced web & API exploitation beyond automated tools
Execute internal / Active Directory attacks and lateral movement scenarios
Lead infrastructure & enterprise security assessments (ISSAF-aligned)
Conduct cloud security testing across Azure & AWS environments
Support and evolve offensive security capabilities, tooling, and training
Lead engagements, workshops, and present findings to stakeholders
YOUR EXPERIENCE & TALENTS
Strong experience in Offensive Security / Penetration Testing / Red Teaming
Deep expertise in:
Web/API attacks (SSRF, IDOR/BOLA, OAuth/OIDC/JWT, deserialization, RCE)
Active Directory attacks (Kerberoasting, ADCS abuse, NTLM relay, delegation attacks)
Cloud security (AWS/Azure) – IAM escalation, misconfig exploitation, Managed Identities
Proven ability to lead end-to-end engagements (scoping, execution, delivery)
Hands-on experience with tools: Burp Suite Pro, Nmap, Impacket, BloodHound, CrackMapExec
Strong scripting skills: Python / PowerShell / Bash
Solid understanding of enterprise security assessments & network security
Certifications such as OSCP / CPTS (or equivalent)
Strong reporting skills with clear business impact & remediation guidance
Experience working under compliance frameworks (ISO 27001, PCI DSS, etc.)
Fluent English and basic German
BENEFITS OFFERED BY OUR CLIENT
Work with top-tier talent in a collaborative, high-performing team
Grow through cutting-edge technologies, continuous learning, and certification opportunities
Thrive in a global, diverse culture while contributing to exciting, cross-industry projects
Enjoy 50+ tailored benefits and a flexible hybrid working model
Balance work and life in a culture that supports your personal and professional development
PERFECT MATCH? We look forward to receiving your application!
QUESTIONS? Please contact Tanya at: +49 30 233 291 755
RECOMMENDATIONS? We’ll reward the successful placement of your recommendation with EUR 1000
We are a cross-industry and cross-functional management and personnel consultancy leveraging the growing number of highly qualified full-time and part-time freelancers and the potential of digitisation in order to offer advisory and implementation support in a sustainable, more agile manner and with more attractive conditions for customers and employees.
We have received several awards for our unique work and business model as Pioneer in Consulting 4.0 and New Work. CROWDCONSULTANTS means:
- Cross-generational co-working as partners instead of hierarchies
- Agile, on-demand "crowdsourcing" of skills, specifically tailored to our clients' needs instead of a fixed pool of consultants
- Flexible, fabulous place to work instead of a traditional company setup
- Digitization and Sharing Economy Principles instead of costly physical infrastructure
Our recent client engagements have been focused on:
- Recruiting and employer branding
- Startup support
- Project, Program and Change Management
- Digitization, IT transformation and process optimization.
We look forward to contact requests from and engaging with:
- Startups whose growth we accompany very success-based
- larger companies seeking agile, professional support for transformation projects
- Former top managers who enjoy contributing their expertise to our projects as interim managers or expert advisors.
- Digital natives and "technoholics" who want to work on exciting projects in direct collaboration with experienced professionals.
CROWDCONSULTANTS 360 GmbH
Akazienstraße 3a · 10823 Berlin, Germany
Tel: +49 30 233 291 740
Managing Director: Damiano Albrecht
Commercial Register: HRB 177846B, AG Berlin-Charlottenburg
