Senior OT Penetration Tester
As an Senior OT Penetration Tester at Bureau Veritas Cybersecurity, you don’t just test standard IT environments. You assess systems that control real-world processes. From energy grids to industrial production lines, your work focuses on identifying vulnerabilities in complex ICS/SCADA environments before they impact operations, safety, or continuity.
We go beyond simply testing with a checklist. You simulate realistic attack scenarios, move across IT/OT boundaries, and uncover weaknesses in environments that were never designed with security in mind. If you understand how different OT is from IT, and how to test it responsibly and effectively, we would like to get in contact with you!
You will work across sectors such as Energy & Utilities, Oil & Gas, Chemical Industry, Infrastructure, Water and Manufacturing. While your core focus is OT, you also assess IT components where they are part of the attack surface.
At the end of the day, your work directly improves the resilience of industrial environments by identifying real-world weaknesses before they can be exploited.
What you will do
- Execute advanced penetration tests in OT environments (ICS, SCADA, PLCs), focusing on realistic attack paths
- Identify and exploit vulnerabilities across IT/OT boundaries, including remote access and segmentation weaknesses
- Simulate real-world attacker scenarios such as ransomware and lateral movement into production environments
- Perform deep technical assessments of industrial protocols and devices
- Lead technically complex engagements and mentor other team members
What you bring
- Proven experience in OT and/or IT penetration testing within industrial environments
- Strong understanding of ICS systems (PLC, SCADA, DCS) and industrial networks
- Solid networking knowledge and experience with Active Directory in converged IT/OT environments
- Experience with offensive tooling and the ability to go beyond standard tools when needed
- Ability to translate technical findings into real-world impact on operations and safety
- Strong communication skills in English, Dutch is a plus
What you can expect with us
You will work in a team of highly technical offensive security professionals, with the freedom to go deep and focus on realistic attack scenarios rather than checklist-driven assessments.
We have offices in the two main technology centers of the Netherlands: Eindhoven and Amsterdam. This role can be filled from either location.
Growth opportunities
We are a fast growing company and you will have the opportunity to grow with us. Whether it involves responsibilities, increasing your visibility within and outside the organization, or attending training and education, at Bureau Veritas Cybersecurity your career development is key.
Cool projects
You will work with a wide range of renowned clients and customers. This gives you the opportunity to demonstrate your expertise and apply your skills in different environments, allowing you to continue to grow and learn. Besides the opportunities to work with some of the leading industrial organizations in the the Netherlands, our fast growing international business provides several international opportunities.
Culture
At Bureau Veritas Cybersecurity, we value celebrating successes and creating an enjoyable work environment, here team building is key. We regularly organize fun activities ranging from annual ski trips to various wine and beer tastings, sailing trips, barbecues and more.
Are you interested in this vacancy?
Do you have questions or would you like to apply? You can do so via jobs.cybersecurity@bureauveritas.com
📌 Note: Pre-employment screening, including a Certificate of Conduct (VOG), and assessment are part of the recruitment process.
What our selection process looks like
