Who We Are
Worldline helps businesses of all shapes and sizes to accelerate their growth journey - quickly, simply, and securely. We are the innovators at the heart of the payments technology industry, shaping how the world pays and gets paid. Our technology powers the growth of millions of businesses across 5 continents. And just as we help our customers accelerate their business, we are committed to helping our people accelerate their careers. Together, we shape the evolution.
Long Description
Day-to-Day Responsibilities
The role will include both recurring security assessment activities and project-based penetration testing engagements, ensuring that internal and client-facing systems are continuously evaluated against evolving threats, with findings properly tracked, reported, and resolved.
Over time, this position is expected to grow into a more senior offensive security role, progressively contributing to red team operations, custom exploit development, security architecture reviews, and the definition of internal testing methodologies and standards.
Who Are We Looking For
The ideal candidate combines solid technical knowledge of offensive security with a methodical approach to vulnerability assessment and exploitation, together with the curiosity and drive to keep pace with an ever-evolving threat landscape.
Key Responsibilities
- Plan, execute, and document penetration tests across web applications, internal networks, and external infrastructure
- Perform vulnerability assessments, security audits, and threat modeling activities
- Simulate real-world attack scenarios including phishing campaigns, social engineering, and red team exercises
- Identify, exploit, and document security vulnerabilities, providing clear remediation guidance
- Produce detailed technical reports for both technical teams and non-technical stakeholders
- Support remediation efforts by collaborating with development and infrastructure teams
- Stay current on emerging threats, CVEs, attack techniques, and security tooling
- Contribute to the improvement of internal security testing methodologies, tools, and playbooks
- Assist with security awareness initiatives and internal training activities
- Progressively take on more complex engagements, with a long-term path toward senior red team or security architecture roles.
- Expected to work as per Italy timezone.
Required Skills
- Hands-on experience with penetration testing of web applications, networks, and systems
- Good knowledge of common attack techniques (OWASP Top 10, MITRE ATT&CK, privilege escalation, lateral movement, etc.)
- Proficiency with standard security tooling (Burp Suite, Nmap, Metasploit, Nessus, or similar)
- Ability to write clear, structured reports documenting findings, risk levels, and remediation steps
- Understanding of networking fundamentals (TCP/IP, DNS, HTTP/S, firewalls, VPNs)
- Familiarity with Linux and Windows environments from both an attacker and defender perspective
- Strong analytical and problem-solving mindset
- Good communication skills in English, including the ability to explain technical findings to non-technical audiences.
Preferred Skills
- Experience with Active Directory attacks and privilege escalation in Windows environments
- Familiarity with cloud security testing (AWS, Azure, GCP)
- Knowledge of scripting or automation for custom tooling (Python, Bash, PowerShell)
- Exposure to red team methodologies and adversary simulation frameworks
- Relevant certifications such as OSCP, CEH, eJPT, or equivalent
- Familiarity with compliance frameworks (ISO 27001, PCI DSS, GDPR, DORA).
Experience
- 5+ years of relevant experience in penetration testing or offensive security
- A portfolio of CTF write-ups, HackTheBox/TryHackMe profiles, bug bounty history, or examples of previous engagements are highly appreciated.
Career Path
This role is intended as an entry point into a broader offensive security career. The selected candidate will initially focus on structured penetration testing engagements and vulnerability assessments, and will progressively be involved in more complex red team operations.
Shape the evolution
We are on an exciting journey towards the next frontiers of payments technology, and we look for big thinkers, people with passion, can-do attitude and a hunger to learn and grow. Here you'll work with ambitious colleagues from around the world, take on unique challenges as a team, and make a real impact on the society. With an empowering culture, strong technology and extensive training opportunities, we help you accelerate your career - wherever you decide to go. Join our global team of 18,000 innovators and shape a tomorrow that is yours to own.
Learn more about life at Worldline at jobs.worldline.com
We are proud to be an Equal Opportunity employer. We do not discriminate based upon race, religion, color, national origin, sex, sexual orientation, gender identity, gender expression, age, status as an individual with a disability, or any applicable legally protected characteristics.
