Penetration Testing Team Lead - Remote Opportunity

About the Role

We are seeking a Penetration Testing Team Lead to join our dynamic team at BrainRocket, a global leader in creating innovative tech products for clients in Fintech, iGaming, and Marketing. This remote Penetration Testing Team Lead role offers the opportunity to shape the future of our Offensive Security function while maintaining a hands-on approach to security challenges.

What You'll Do

• Build the Offensive Security function from the ground up, defining methodologies and reporting standards.
• Recruit, mentor, and develop a team of offensive security engineers, ensuring technical excellence.
• Perform deep-dive manual penetration testing for complex, high-risk assets, focusing on realistic attack scenarios.
• Lead purple team exercises with the SOC/Blue Team, simulating real-world attacks to validate detection capabilities.
• Collaborate closely with the Application Security Team to validate vulnerabilities and guide remediation strategies.
• Translate offensive findings into actionable threat intelligence and recommendations.
• Act as a subject matter expert in security architecture discussions and secure design reviews.
• Stay current with emerging attack techniques and ensure knowledge sharing within engineering teams.

Requirements

• 5+ years of hands-on experience in Penetration Testing, including web, mobile, API, and cloud environments (AWS, Azure, GCP).
• Experience building offensive security processes and methodologies from scratch.
• Strong "playing coach" mindset: willingness to remain highly hands-on (70-80%) while setting up the function.
• Deep understanding of penetration testing methodologies and frameworks (OWASP Top 10, SANS Top 25).
• Demonstrated experience contributing to purple team exercises and improving detection logic.
• Strong hands-on experience with industry-standard tools (Burp Suite Pro, Metasploit, Nmap) and ability to develop custom automation (Python, Go, PowerShell, Bash).
• Solid knowledge of network protocols (TCP/IP, HTTP/S, DNS), operating systems (Linux, Windows), and cloud-native architectures (Docker, Kubernetes).
• Excellent communication skills to present critical business risks to technical and non-technical stakeholders.

Nice to Have

• Advanced certifications such as OSCP, OSCE, OSWE, CRTP, or SANS GIAC.
• Experience in fast-growing companies (Gaming/Fintech) with exposure to industry-specific security challenges.

What We Offer

• Learning and development opportunities with interesting, challenging tasks.
• Partial compensation for language classes (English/Spanish).
• Relocation package including tickets, hotel stay for up to 2 weeks, and visa support for employees and family.
• Global coverage health insurance.
• 20+ working days of annual vacation and 6 additional paid sick days.
• Competitive remuneration level with annual review.
• Teambuilding activities to foster collaboration.

Bold moves start here. Make yours. Apply today for the Penetration Testing Team Lead remote position!