Key skills
PHPPythonSQLBashProblem SolvingRemote WorkOWASPPenetration Testing
About this role
Role Overview
- Your mission will be to simulate realistic and controlled cyberattacks across our infrastructure and applications to identify vulnerabilities, evaluate associated risks, and continuously improve the security of Scaleway’s products and services.
- Conduct web, API, network, and infrastructure penetration tests on Scaleway products and internal systems.
- Simulate realistic attack scenarios to uncover vulnerabilities and weaknesses.
- Participate in Red Team and adversarial simulation exercises, including social engineering campaigns.
- Assess and prioritize vulnerabilities based on their risk and potential impact.
- Produce clear, structured security reports and communicate findings to technical and non-technical stakeholders.
- Collaborate with product and engineering teams to support remediation and security improvements.
- Contribute to the design and implementation of the internal penetration-testing tool stack.
- Stay current with emerging vulnerabilities, exploits, and offensive security techniques.
- Support continuous security testing workflows across Scaleway products.
Requirements
- Hands-on experience in penetration testing (web, APIs, networks, infrastructure).
- Strong knowledge of OWASP Top 10, MITRE ATT&CK, CVE, and common exploitation techniques.
- Experience with security tools such as Nmap, Metasploit, Burp Suite, or OWASP ZAP.
- Solid scripting or development skills (Python, Bash, SQL, PHP or similar).
- Understanding of exploitation techniques such as XSS, SQL injection, buffer overflows, or reverse engineering.
- Strong analytical mindset and intellectual curiosity.
- Creative, “think outside the box” approach to problem solving.
- High level of ethics and integrity in offensive security work.
- Ability to write clear, structured reports.
- Team player with a collaborative mindset.
Tech Stack
- PHP
- Python
- SQL
Benefits
- Hybrid work: Up to 3 days of remote work per week.
- Offices: Spacious, dynamic workspaces with bold design, conveniently located near public transport. Most offices feature outdoor spaces (terraces) and bike parking.
- Dining: A chef-provided healthy meal service at headquarters and breakfast available across all sites year-round. Employees at regional sites receive a Swile card for lunches.
- Well-being support: Access to gym memberships, daycare places, and discounted care services to help maintain work-life balance.
- International environment: Dozens of nationalities; English is widely spoken alongside French.
- Career & Mobility: Managers support internal mobility, and opportunities to move to other entities within the Iliad Group are available to employees.