Back
Verified active · 12h ago

Offensive Security Engineer, Penetration Testing

Procter & GambleProcter & Gamble·Consumer Goods

Apply effort

<60 sec

via Aplyr Quick Apply

Posted

Today

01

About the role

Job Location

WARSAW PLANT & GO

Job Description

Are you a person who is passionate about breaking applications, devices, services and/or processes to help protect them against the worlds most advanced cyber security adversaries?

The Information Security Protect organization at Procter & Gamble is responsible for providing a realistic depiction of threat actor behaviors and scenarios during simulated exercises. We drive improvements to applications and systems, as well as detection and response capabilities through regular testing of security controls across the enterprise.

Responsibilities:

  • Lead defined-scope penetration tests across assigned areas such as websites, services, APIs, infrastructure, cloud environments, networks, IoT devices, mobile applications, and enterprise applications.

  • Partner with Intake Management, senior testers, and stakeholders to confirm objectives, access, rules of engagement, test assumptions, and engagement readiness.

  • Execute testing activities including reconnaissance, vulnerability discovery, exploitation, evidence collection, reporting, and remediation validation.

  • Identify, validate, exploit, and clearly document security vulnerabilities while operating safely within approved scope.

  • Validate related vulnerabilities together where appropriate to demonstrate realistic impact within the boundaries of the engagement, escalating complex attack chains as needed.

  • Test for control gaps where relevant and document observed weaknesses in preventative or detective controls.

  • Investigate and validate Vulnerability Disclosure Program and Bug Bounty findings, escalating complex or high-impact issues as needed.

  • Work with engineering, product, cloud, infrastructure, and security teams to explain findings and support practical remediation.

  • Use approved scripts, templates, automation, and AI-assisted workflows to support testing efficiency, triage, reporting, and remediation validation.

  • Assist with testing AI-enabled applications and integrations for common risks such as prompt injection, sensitive data exposure, insecure tool use, and authorization flaws.

  • Produce clear standardized reports with reproduction steps, evidence, impact, affected systems, and remediation guidance.

  • Contribute to team knowledge sharing, documentation, test notes, templates, and process feedback.

Job Qualifications

Qualifications (Required):

  • Bachelor’s degree or equivalent Polish higher education qualification in Information Security, Cybersecurity, Computer Science, or a related field, OR 2+ years of relevant experience in lieu of a degree.

  • 2+ years of experience in penetration testing, application security testing, vulnerability validation, offensive security, or related security work.

  • Ability to lead defined-scope penetration tests, manage day-to-day execution, document results clearly, and escalate complex, novel, or high-risk issues appropriately.

  • Experience identifying, validating, and exploiting weaknesses in 2 or more domains such as web applications, APIs, mobile applications, cloud infrastructure, enterprise applications, databases, networks, servers, IoT devices, identity platforms, directory services, or AI-enabled systems.

  • Ability to automate tasks with basic scripts or programs in at least one language such as Python, PowerShell, Bash, Go, C#, JavaScript, or similar.

  • Basic Linux command-line experience and familiarity with Windows-based environments.

  • Ability to read and understand code well enough to follow application behavior and identify security-relevant logic.

  • Basic hands-on experience with at least one major cloud provider such as GCP, AWS, or Azure.

  • Adversarial mindset with the ability to think from an attacker’s perspective while following rules of engagement and safety guidance.

  • Clear written and verbal communication skills with the ability to explain technical findings concisely.

Qualifications (Preferred Skills):

  • One or more penetration testing or security certifications such as OSCP, OSWE, GPEN, GXPN, GWAPT, PNPT, eJPT, or similar.

  • Experience with CTFs, Bug Bounty programs, Vulnerability Disclosure Programs, coordinated vulnerability research, or public technical write-ups.

  • Experience using AI tools to assist with reconnaissance, code review, vulnerability triage, payload development, reporting, or remediation validation.

  • Exposure to testing AI-enabled applications, LLM-based systems, AI agents, RAG systems, model integrations, or AI-enabled workflows.

  • Experience with mobile, IoT, embedded systems, firmware, reverse engineering, or hardware security testing.

  • Exposure to cloud and identity attack paths involving SSO, MFA, OAuth, IAM, secrets exposure, conditional access, or privilege escalation.

  • Familiarity with tools such as Burp Suite, Nmap, Metasploit, Frida, Ghidra, IDA, BloodHound, or cloud security testing tools.

  • Curiosity, humility, and a desire to improve technical depth, reporting quality, and testing consistency.

We offer

  • P&G-sized projects and access to world leading IT partners and technologies from Day 1.

  • Wide range of self-development possibilities (training and certifications paths).

  • Competitive starting salary and benefits program (private health care, P&G stock, saving plans, sport cards).

  • Regular salary increases and possible promotions - in line with your results and performance.

  • Opportunity to change role every few years to be in the best place for you and best for P&G.

At Procter & Gamble, we embrace a hybrid work model that combines the flexibility of remote work with the collaborative benefits of in-office engagement. Employees can enjoy the option to work from home two days a week while also spending time in the office to foster teamwork and enhance communication.

At P&G #weseeequal

We are an equal opportunity employer and value diversity at our company. At P&G we strive to build a culture where everyone feels welcome, included, and able to bring their full selves to work.

We ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process. Please click here if you require an accommodation during the application process. Please make sure to wait to hear back from us regarding your accommodation before proceeding with the online assessment, we thank you in advance for your patience.

Kindly be advised that at P&G, employment is exclusively extended on the basis of "Umowa o Pracę" (Full-time Employment Contract). Apply only if you agree to these conditions.

Job Schedule

Full time

Job Number

R000153380

Job Segmentation

Experienced Professionals
02

Aplyr's read

Procter & Gamble is a leader in consumer goods, attracting talent across diverse roles from brand management to engineering, with a focus on innovation and global reach.

Synthesized from recent postings & public sources

What's promising

  • P&G offers a wide range of career opportunities across multiple functions and geographies.
  • The company invests heavily in innovation, particularly in digital and AI technologies.
  • Strong market position with a portfolio of trusted brands like Tide and Pampers.

What to watch

  • P&G's large size can lead to slower decision-making processes.
  • Intense competition in the consumer goods sector may impact market share.
  • Frequent restructuring efforts may cause job insecurity for some roles.

Why Procter & Gamble

  • P&G's brand portfolio includes some of the world's most recognized consumer products.
  • The company has a robust focus on sustainability and corporate social responsibility.
  • P&G's extensive global reach provides opportunities for international career growth.

Aplyr’s read is generated by AI from public sources. Was it useful?

03

About Procter & Gamble

Procter & Gamble

Procter & Gamble

View company

Procter & Gamble (P&G) is a multinational consumer goods corporation specializing in a wide range of personal care and hygiene products.

04

Similar roles