Job Specifications
Contract type: Freelance / Full-time
Location: Paris area (preferable), or EMEA remote
Start date: January 2026
⏳ Duration: 3 month contract initially + extensions
Hourly rate: TBD
About the Client
Our client is a globally leading, independent family-owned company specializing in B2B distribution of products, solutions, and related services. With a network of 80 brands across 40 countries and over 50,000 employees, the Group is undergoing a major digital transformation to become the first fully digitalized and synchronized omnichannel B2B distributor worldwide.
The Environment
You’ll join the Group Cybersecurity Department, specifically the Infrastructure Security & Vulnerability Management team within HQ Cyber Security Operations. This team plays a critical role in safeguarding global IT infrastructure, networks, and cloud environments against evolving cyber threats.
The Assignment
We are looking for an experienced Penetration Tester to strengthen the organization’s cybersecurity posture by identifying vulnerabilities in network architectures, operating systems, identity platforms, and cloud environments before they can be exploited. This is a hands-on role requiring deep technical expertise in infrastructure security and an attacker mindset.
Key Responsibilities
Design and execute penetration tests focused on network and infrastructure security, including internal and external environments.
Perform advanced testing on Active Directory and Entra ID, covering enumeration, privilege escalation, and lateral movement.
Assess Windows and Linux builds for hardening compliance and vulnerability exposure.
Conduct penetration tests on cloud platforms (Azure, AWS, GCP) and hybrid environments.
Document findings in clear, actionable reports including risk analysis and remediation recommendations.
Support incident response teams in validating attack scenarios and identifying contributing weaknesses.
Collaborate with infrastructure and operations teams to ensure effective remediation and prevent recurrence.
Monitor emerging threats and trends to keep methodologies aligned with evolving risks.
Key Deliverables
Infrastructure-focused penetration test reports with risk and remediation guidance
Statement of Work (SoW) documentation for test parameters
Vulnerability remediation support plans
Updated methodologies aligned with industry best practices
Your Profile
Education & Certifications:
Bachelor’s degree in IT, Cybersecurity, or related field
Preferred certifications: OSCP, CREST CRT
Technical Expertise:
5+ years of experience in penetration testing with a strong focus on network and infrastructure security
Deep knowledge of Active Directory, Entra ID, and privilege escalation techniques
Experience with Windows/Linux hardening and compliance standards
Proficiency in at least one major cloud platform (Azure, AWS, GCP)
Familiarity with frameworks (MITRE, OSSTMM, PTES) and tools (Nmap, Burp Suite, SharpHound/BloodHound)
Participation in HackTheBox, TryHackMe, or bug bounty programs is a plus
Soft Skills:
Clear and effective communication
Analytical thinking and attention to detail
Problem-solving in complex technical environments
Team collaboration across international and multicultural settings
Adaptability and ethical judgment under pressure
Interested?
RIXT® Recruitment is exclusively handling the recruitment & selection for this assignment.
Contact Ameet Sidhoe at +31 6 18 83 05 76
Or email: Ameet@RIXTrecruitment.nl
About the Company
RIXT® Recruitment is a specialized recruitment agency that focuses on connecting experienced ICT professionals and leaders with the ambitious goals of organizations. We do this based on our services; Executive Search, Recruitment & Selection, and Interim Management.
Know more