Thales Cybersecurity Services

cds.thalesgroup.com

1 Job

445 Employees

About the Company

Thales delivers cybersecurity products and services that keep people and assets safe, giving organisations confidence in the security of their digital journeys. As organisations turn to cloud and SaaS-based technologies, they are searching for smarter ways of reinforcing trust and resilience in their processes and infrastructures. Drawing on a global team of 6,000 cybersecurity experts and developers, we protect organisations by identifying, detecting and responding to the growing array of cyber threats. Our portfolio protects identities and data, along with all the paths that lead to it, encompassing services that include compliance and governance audits, threat detection and penetration tests. Thales is a global leader in cybersecurity - no.1 in data security - generating annual revenues in excess of €2 billion in this domain and operates in 148 countries worldwide. Building on this and on the expertise we have in industrial and critical systems, we deploy our service offering more specifically in the fields of transportation, aerospace, defence, government administrations, and finance in three operating models: • Cybersecurity Consulting and Architecture: Aimed at deploying a cybersecurity strategy adapted to the business and regulatory challenges of clients by taking the threat context (risk-based approach) into account: Security policies, audits, risk analyses, penetration tests, system certification. • Cybersecurity Solutions Integration: Aimed at deploying technologies adapted to the challenges of organisations and at protecting their assets: protection of data, industrial infrastructure, and information systems. • Detection and Response Services: Delivered from 8 Security Operations Centres (SOCs) around the world, these services detect attacks against monitored systems 24/7, and respond to them using our rapid intervention forces.

Listed Jobs

Company Name: Thales Cybersecurity Services
Job Title: Penetration Tester
Job Description: **Job Title** Penetration Tester **Role Summary** Conduct comprehensive offensive security assessments—including network, infrastructure, and application penetration testing, red team simulations, and targeted adversarial attacks. Deliver detailed technical and executive reports, provide actionable remediation guidance, mentor junior testers, and contribute to continuous improvement and research initiatives within a collaborative security team. **Expectations** - Perform external, internal, and remote penetration tests, OSINT, spear‑phishing, and other simulation techniques. - Produce clear, actionable technical and executive‑level findings and remediation plans. - Mentor junior staff and share knowledge to enhance team capabilities. - Stay current on emerging attack vectors, vulnerabilities, and exploit techniques. - Participate in research and responsible disclosure within the cybersecurity community. **Key Responsibilities** - Execute full‑cycle penetration testing on diverse environments (critical infrastructure, advanced technology systems). - Use offensive tools (Burp Suite, Metasploit, Cobalt Strike, Nmap, netexec, BloodHound) to identify and exploit vulnerabilities. - Develop and maintain testing methodologies, frameworks, and best‑practice documentation. - Collaborate with stakeholders to translate findings into strategic risk mitigation strategies. - Engage in internal R&D projects and contribute to knowledge‑sharing initiatives. **Required Skills** - Minimum 2 years of professional penetration testing or red‑team experience. - Deep technical knowledge of operating systems, networks, and application‑layer attacks. - Proficiency in scripting languages: Python, Rust, Bash, PowerShell, or similar. - Strong analytical, problem‑solving, and report‑writing abilities. - Familiarity with threat‑intelligence and adversarial simulation techniques (OSINT, social engineering). **Required Education & Certifications** - Bachelor’s degree in Computer Science, Cybersecurity, or related field (or equivalent experience). - Preferred certifications: OSCP, OSEP, OSWP, OSCE, OSED, GPEN, or equivalent. - Demonstrated participation in CTF competitions, FLARE‑ON, or SANS training is highly valued. - Professional working proficiency in English; bilingual proficiency in French or Dutch is a plus.