Deputy Service Delivery Manager – Penetration Testin...

Start date: February 2026

Clearance: NATO Secret or equivalent

Location: Mons, Belgium

Requirements:

• 3+ years' experience in project management or service delivery management within cybersecurity
• Extensive technical expertise in penetration testing and offensive security
• Deep understanding of vulnerabilities across network, application, and cloud environments
• Ability to estimate effort and scope for complex technical assessments
• Strong knowledge of the penetration testing service lifecycle
• Proven ability to scope engagements, defining objectives, in/out of scope items, assumptions, constraints, rules of engagement (RoE), and deliverables
• Solid understanding of common penetration testing standards and requirements (e.g., OWASP, PTES, NIST/ISO-aligned practices)
• ITIL experience with strong focus on Change Management
• Proven customer-facing experience, including requirements gathering, stakeholder management, and expectation setting
• Ability to map business and technical needs to appropriate test types (web/API, network, cloud, mobile, wireless, red teaming vs. penetration testing)
• Excellent written and spoken English, capable of producing and reviewing customer-ready documentation

Duties:

• Support the SDM in delivering high-quality penetration testing services
• Evaluate scope and level of effort (LoE) accurately for penetration testing tasks
• Provide technical oversight of vulnerabilities identified during testing
• Act as a technical liaison between penetration testers, service management, and stakeholders
• Contribute to service quality, consistency, and continuous improvement
• Assist in planning and scheduling penetration testing engagements across NATO and NCIA environments
• Coordinate resources and ensure adherence to agreed timelines
• Monitor engagement progress and manage associated risks and dependencies
• Conduct technical scoping discussions with stakeholders
• Assess complexity, attack surface, and constraints of target systems
• Produce justified LoE estimates aligned with NCSC PTAE methodologies
• Support engagement kick-offs, debriefings, and technical discussions
• Translate technical findings into risk-focused language suitable for decision-makers
• Support service reporting, KPIs, and dashboards
• Contribute to methodology updates and capture lessons learned

Login and apply | Register and apply |