Cybersecurity Professional - Penetration Testing & Security AssessmentsAbout us
modzero is a privately held company specializing in deep technical security assessments, with offices in Switzerland and Germany. We focus on complex security challenges and maintain high technical standards in everything we do.
Our team brings together decades of experience across different generations of security professionals. What unites us is a shared curiosity, a strong technical mindset, and the drive to understand how systems fail - and how to secure them.
Your role
- Conduct in-depth penetration tests and technical security assessments across a variety of environments.
- Assess the security of web applications, APIs, mobile applications, cloud environments, and infrastructure systems.
- Identify vulnerabilities, misconfigurations, and realistic attack paths in complex systems.
- Contribute throughout the entire project lifecycle, from technical preparation and scoping to reporting and presenting findings to clients.
- Produce clear, structured, and reproducible reports that help clients understand risks and remediation strategies.
- Collaborate closely with colleagues to exchange knowledge and contribute to the development of internal methodologies, tools, and lab environments.
Your profile
You are an experienced security professional who enjoys analyzing complex systems and understanding how vulnerabilities can be exploited in realistic scenarios. You combine strong technical skills with a structured and curious approach to security analysis.
Ideally, you bring
- Several years of hands-on experience in IT security, including penetration testing or technical security assessments.
- Solid knowledge in one or more areas such as web applications, APIs, mobile applications, cloud environments, Active Directory, or network infrastructures.
- Experience working with common penetration testing tools and methodologies.
- The ability to analyze technical issues precisely and document findings in clear, structured reports.
- Experience developing small tools, scripts, or proof-of-concepts (e.g., in Python, PowerShell, or Bash).
- Strong communication skills in German and English.
Nice to have
- Experience with cloud security, particularly in Microsoft or hybrid environments.
- Familiarity with secure code review or deeper technical application analysis.
- Interest or experience in areas such as cryptography, AI security, or modern application architectures.
- Relevant offensive security certifications (e.g., OSCP, OSEP, CRTO, GPEN, or similar).
- Experience interacting directly with clients and presenting technical findings.
- Interest in sharing knowledge within the team and continuously developing your technical expertise.
What we offer
- A permanent full-time position in an independent and privately held security company.
- Flexible working arrangements, including remote work and offices in Winterthur and Berlin.
- A focused, highly technical environment where you can focus on challenging security work rather than compliance-driven consulting.
- A small, experienced team that values collaboration, knowledge sharing, and technical depth.
- Opportunities to work on diverse and complex security assessments across a wide range of industries.
- Time and support for internal knowledge exchange, research activities, and security publications.
- Support for professional development, training, and relevant certifications.
If this sounds like your kind of challenge, we’d love to hear from you.
Send us a short introduction about yourself, your career path so far, and your experience, including any certifications and references (CV).
.orezd
- PGP Key ID: 0xEADF873922416024 ⤓
About us
modzero is a privately held company specializing in deep technical security assessments, with offices in Switzerland and Germany. We focus on complex security challenges and maintain high technical standards in everything we do. Our team brings together decades of experience across different generations of security professionals. What unites us is a shared curiosity, a strong technical mindset, and the drive to understand how systems fail - and how to secure them.
Your role
- Conduct in-depth penetration tests and technical security assessments across a variety of environments.
- Assess the security of web applications, APIs, mobile applications, cloud environments, and infrastructure systems.
- Identify vulnerabilities, misconfigurations, and realistic attack paths in complex systems.
- Contribute throughout the entire project lifecycle, from technical preparation and scoping to reporting and presenting findings to clients.
- Produce clear, structured, and reproducible reports that help clients understand risks and remediation strategies.
- Collaborate closely with colleagues to exchange knowledge and contribute to the development of internal methodologies, tools, and lab environments.
Your profile
You are an experienced security professional who enjoys analyzing complex systems and understanding how vulnerabilities can be exploited in realistic scenarios. You combine strong technical skills with a structured and curious approach to security analysis.
Ideally, you bring
- Several years of hands-on experience in IT security, including penetration testing or technical security assessments.
- Solid knowledge in one or more areas such as web applications, APIs, mobile applications, cloud environments, Active Directory, or network infrastructures.
- Experience working with common penetration testing tools and methodologies.
- The ability to analyze technical issues precisely and document findings in clear, structured reports.
- Experience developing small tools, scripts, or proof-of-concepts (e.g., in Python, PowerShell, or Bash).
- Strong communication skills in German and English.
Nice to have
- Experience with cloud security, particularly in Microsoft or hybrid environments.
- Familiarity with secure code review or deeper technical application analysis.
- Interest or experience in areas such as cryptography, AI security, or modern application architectures.
- Relevant offensive security certifications (e.g., OSCP, OSEP, CRTO, GPEN, or similar).
- Experience interacting directly with clients and presenting technical findings.
- Interest in sharing knowledge within the team and continuously developing your technical expertise.
What we offer
- A permanent full-time position in an independent and privately held security company.
- Flexible working arrangements, including remote work and offices in Winterthur and Berlin.
- A focused, highly technical environment where you can focus on challenging security work rather than compliance-driven consulting.
- A small, experienced team that values collaboration, knowledge sharing, and technical depth.
- Opportunities to work on diverse and complex security assessments across a wide range of industries.
- Time and support for internal knowledge exchange, research activities, and security publications.
- Support for professional development, training, and relevant certifications.
If this sounds like your kind of challenge, we’d love to hear from you.
Send us a short introduction about yourself, your career path so far, and your experience, including any certifications and references (CV).
.orezd - PGP Key ID: 0xEADF873922416024 ⤓