Team Lead Penetration Testing (Hybrid set up)

Team Lead Penetration Testing

Join Swiss Re and lead a team of passionate and dedicated professionals – helping us fulfill our mission in making the world more resilient. As the Penetration Testing Team Lead, you'll spearhead our Penetration Testing team on its mission for continual improvement and development of penetration testing services, assessment of web application and infrastructure vulnerabilities, and identification of root security problems across our application landscape.

About the Role

In this critical security leadership position, you'll drive excellence in penetration testing services while developing your team and collaborating with stakeholders across our global organization. You'll be at the forefront of our security assurance framework, ensuring Swiss Re's cyber resilience through expert assessment and continuous improvement.

Key Responsibilities

• Lead the Penetration Testing team for Swiss Re  

• Be a leader who understands that it takes a diverse set of skills and individuals to form a highly effective operations team   

• Lead, inspire, and develop your team by establishing an environment which enables autonomy and mastery for all team members   

• Continuously improve existing processes, documentation, and develop long-term strategy for the pentest services  

• Efficiently own, perform, and deliver security assessment of web application and infrastructure penetration reports, and coordinate the remediation of all findings  

• Compile lessons learned sessions and education material for IT developers and other relevant partners  

• Manage relationships with internal partners and external security companies providing pentest services  

• Collaborate closely with global teams from IT application owners, information security specialists, and security officers  

• Identify root cause security problems that are seen across the application landscape and address with them trainings and solutions  

• Provide a development programme which enables all staff to continuously enhance their skills and provide space for continuous learning and growth for the team   

• Be someone who believes in continuous innovation, is curious and relentless in finding a better way every day    

About the Team

The Security Operations Team integrates red teaming, vulnerability management, pentesting, incident management and threat intelligence into a continuous assurance framework that validates Swiss Re's cyber resilience. Our mission is to evolve from scheduled checks to a continuous, intelligence-led approach — enabling proactive validation of security posture, control effectiveness, and risk awareness across all assurance disciplines.

We collaborate closely with other security teams on transparent reporting, metrics, and decision support aligned with NIST CSF and Swiss Re's risk management frameworks.

About You

You're a passionate security leader who understands that it takes diverse skills and individuals to form a highly effective operations team. You believe in the value of digital service security as an enabler of business performance and have a proven track record of leading security professionals. You thrive in collaborative environments and can communicate effectively with both technical and non-technical stakeholders.

We are looking for candidates who meet these requirements:

• Passion, drive, and a belief in the value of digital service security as an enabler of business performance  

• A bachelors degree (or higher) in Computer Science or related field  

• At least 8 years of experience in information security and penetration testing  

• At least 3 years of demonstrated ability leading a team of cyber security professionals 

• Expert knowledge of Open Web Application Security Project (OWASP) Top 10 Vulnerabilities, testing procedures, and remediation recommendations  

• Experience in Vulnerability Assessments, Penetration Tests of Web, Network, Mobile (Android, iOS and Windows), Cloud and API Security assessments  

• Experience with vulnerability management and penetration testing tools (BurpSuite, Nmap, Qualys, etc) 

• Demonstrated expertise and a high level of motivation as a leader for an international team with the ability to work in a hybrid setting  

• Experience in software development and architecture in complex corporate environments  

• The ability to communicate with a broad spectrum of stakeholders effectively – from regular clients to experienced security professionals  

• A high level of integrity, result-oriented approach, and composure under pressure  

• Strong communication, influencing, and collaboration skills   

• Superb communication and writing skills – proficiency in English is required, other languages are a plus  

Our company has a hybrid work model where the expectation is that you will be in the office at least three days per week

For Spain the base salary range for this position is between EUR 60,0000 and EUR 100,000 (for a full-time role). The specific salary offered considers:

• the requirements, scope, complexity and responsibilities of the role,
• the applicant’s own profile including education/qualifications, expertise, specialisation, skills and experience.

In the situation where you do not meet all the requirements or you significantly exceed these, the offered salary may be below or above the advertised range.

In addition to your base salary, you may be eligible for additional rewards and benefits including an attractive performance-based bonus.