Short company description

Euro-Testing Software Solutions is involved in software consulting, having experience of approx. 20 years on the market in Romania and abroad, through specific IT solutions and services offered in the following areas:
• Software Testing (manual testing, testing automation, performance testing, outsourcing, training and certification, etc.)
• Cyber ​​Security
• DevOps/DevSecOps
• Implementation and Customization of Atlassian & OpenText products (MicroFocus) and other niche products/solutions
• AI based Decision Intelligence solutions.

Requirements

• Cloud & networking
• Strong AWS: VPC design, Transit Gateway/peering, Security Groups/NACLs, ALB/NLB, IAM, KMS, S3, CloudWatch/CloudTrail, Systems Manager.
• Secure network architecture for offensive labs: multi VPC/account design, segmentation between vendors/internal/targets, egress control, VPN/Direct Connect, private DNS.
• Experience integrating or operating bastion patterns (Guacamole, jump hosts, remote desktop gateways).
• Infrastructure as Code & automation
• Expert level Terraform for AWS (modules, workspaces, remote state, DRY patterns, testing of IaC).
• CI/CD for infra changes (GitHub Actions/GitLab/Azure DevOps, plan/apply workflows, policy as code, approvals).
• Strong scripting skills (Python, Bash, PowerShell or Go) for orchestration, automation, and glue code.
• Platform & OS security
• Hardening Linux and Windows, CIS/benchmark alignment, secure images/golden AMIs, patching strategies.
• Experience building and operating disposable pentest VMs (Kali, Windows) and image pipelines.
• Strong identity and access control: IAM role design, least privilege, SSO integration, MFA, RBAC within apps.
• Application & integration skills
• Experience deploying and securing Apache Guacamole or similar remote access gateways.
• Experience integrating cloud platforms and remote access solutions (Citrix to Azure VMs, AWS ↔ Azure connectivity, SAML/OIDC).
• Familiarity with common pentest tooling requirements (ports, traffic patterns, bandwidth/storage needs).
• Security engineering & resilience
• Design of high availability architectures (multi AZ, auto scaling where appropriate, resilient data stores, backup/restore).
• Logging/monitoring design: CloudTrail, VPC Flow Logs, centralized logging (e.g., CloudWatch, ELK, or SIEM), alerting for abuse or platform compromise.
• Threat modeling and secure design reviews for new features, APIs, and workflows in the platform.
• Nice to have
• Hands on penetration testing or red team background (network, web, cloud).
Soft skills
• Ownership & autonomy
• Comfortable owning the end to end lifecycle of the platform components: design, implementation, documentation, and handover.
• Proactive in surfacing risks, proposing options, and driving decisions without waiting for detailed direction.
• Communication & collaboration
• Can translate pentest team needs into concrete technical designs and explain trade offs to non security stakeholders.
• Clear written documentation for runbooks, architecture diagrams, Terraform layout, and “how to use the platform” guides.
• Security mindset & pragmatism
• Strong threat driven mindset: always thinking about abuse cases, misconfigurations, and blast radius.
• Pragmatic about balancing security, usability, and delivery speed; able to propose phased, risk based approaches.
• Team fit & coaching
• Comfortable working with internal pentesters and external vendors, clarifying requirements and constraints.
• Willing to mentor engineers on secure use of the platform, Terraform/IaC practices, and operational hygiene.
• Ways of working
• Experience working as a contractor: self organizing, reliable estimates, good status reporting, and expectation management.
• Comfortable with async work (chat, tickets, PR reviews) and structured change management (RFCs, CABs, or similar).

Responsibilities

Security engineer responsible for designing, deploying, and hardening an AWS based penetration testing platform (internal + external vendors), including IaC, automations, integrations (Citrix, Azure, Guacamole), and resilience. Focus is on building a secure, scalable “attack infrastructure” more than running tests yourself.