About the project

• As a Senior Security Tester at Phoenix Contact, you will play a critical role in safeguarding our products by performing penetration tests, ensuring compliance with cybersecurity standards, and collaborating closely with software developers and junior team members. Your expertise will ensure that internal systems, applications, and firmware solutions meet the highest security benchmarks while contributing to the development of robust internal policies and frameworks. By mentoring junior team members and integrating security into product development lifecycles, you will help Phoenix Contact stay ahead of cyber threats and foster a culture of continuous improvement.

Your responsibilities

• Penetration Testing: Conduct penetration tests on software, firmware, and networked systems using methodologies aligned with standards such as OWASP, IEC 62443, and NIST. Identify vulnerabilities and provide actionable remediation strategies to strengthen security posture
• Collaboration with Internal Teams: Work closely with software developers to review code for security risks, promote secure coding practices, and implement secure application development methodologies
• Documentation & Compliance Management: Develop structured frameworks for documenting penetration test results, ensure adherence to compliance standards, and support internal audit processes
• Mentorship & Knowledge Transfer: Mentor junior security testers by sharing expertise in penetration testing methodologies, secure development principles, and threat modelling. Support the development of internal training materials, policies and security standards

Our requirements

• A master’s degree in computer science, cybersecurity, electrical engineering, or a related field
• Proficiency in penetration testing methodologies, automation, and secure coding practices
• In-depth understanding of the architecture and security of both web and desktop applications
• Understanding of firmware or embedded system security is considered a plus
• Expertise in cybersecurity principles, threat modelling and presenting attack vectors
• Knowledge of compliance standards (e.g., GDPR, NIST, IEC 62443) and experience integrating security into product development lifecycles
• Proven track record in conducting penetration tests and identifying vulnerabilities across software, firmware, and networked systems. History of mentoring teams and integrating security-aware practices into workflows
• Penetration testing certifications such as OSCP, CPTS (required)
• Self-driven and highly autonomous with a strong sense of responsibility
• Excellent written and spoken English (minimum B2 level) with a willingness to occasionally travel to Germany for training or project coordination
• Structured, detail-oriented approach with a proactive attitude toward quality assurance and process improvement
• Strong communication skills to translate technical findings into actionable insights for non-specialists
• CV in English

Technologies we use

What we offer

• A challenging work in an innovative Shared Services Center in Poznan

• A stable work in an international organization

• Participation in interesting projects

• Development opportunities and a wide range of training, including subsidised language courses

• Private medical care

• A multisport card

• Housing loans and a loan and assistance fund

• Annual bonus

• Flexible working hours and the possibility to work remotely up to 8 days a month

• Subsidies for commuting more than 30 km from PxCW

• A referral bonus