WEB Application Penetration Tester (Ethical Hacker)

Indigroup is an executive search company, whose quality of services is becoming a benchmark in Baltic states. Our client is SEC Consult.

SEC Consult is one of the leading security consultancies with subsidiaries in Austria, Germany, North America, Lithuania and Singapore. Company’s main activities include the performance of in depth security testing, mitigation of cyber risks and the implementation of information security management processes. With more than 100 people on board, SEC Consult is still growing and we’re currently looking for a new SEC Consult team member in Estonia. As an Information Security Specialist at SEC Consult you will get the opportunity to further deepen and broaden your professional IT security and personal skills.


SEC Consult has 5 subsidiaries: Austria, Germany, North America, Baltics and Singapore


You will work in international environment with more than 100 specialists of SEC Consult


You will work close with colleagues from Lithuania, Austria, Germany and Singapore. Your main tasks would be:

  • Conducting manual WEB application penetration tests and code security reviews
  • Reporting, risk assessment and offering solutions for closing security gaps in WEB applications
  • Formulation of development guidelines and coding guidelines
  • Keep up to date with latest WEB technologies, security testing and ethical hacking methods
  • Contribute to the research to assist in the vulnerability discovery process
  • Performing tests of architectural concepts and create design patterns
  • Preparation of security concepts
  • Secure software development consulting

Company offers

  • Exciting and varied work at an international top security consultancy with team members from Austria, Germany and Singapore
  • From 1500 EUR salary after taxes for a junior role to 2500 EUR salary after taxes or even more for a mid. or senior level role
  • Possibilities of knowledge enhancement in different areas of information security (e.g. incident response, forensic, mobile security, reverse engineering,…)
  • OSCP, CEH or similar certification (OSWE, OSCE, GPEN)
  • Amazing projects in well-known worldwide companies
  • Free parking, snacks and gaming activities at the office
  • Trips to information security conferences (Infosecurity Europe and others)
  • Possibility to work remotely


  • Passion for information security
  • Understanding of concepts of at least one of the following technologies: Java EE, ASP.NET, PHP
  • Ideally, prior knowledge in the field of WEB application security
  • Good command of written and spoken English
  • Knowledge of OWASP vulnerability classes, OWASP testing guide
  • Experience with common operating systems (Windows, *nix)
  • IT knowledge (operation and/or application development)
  • OSCP, CEH, OSWE, OSCE, GPEN –  at least one of them would be great

Contact information

Karolis Blaževičius

+370 654 74958

Apply for Position

Select and upload your CV. Confidentiality guaranteed.