Description

Ryanair Labs are currently recruiting for a Senior Penetration Tester to join Europe’s Largest Airline Group!

This is a very exciting time to join Ryanair as we look to expand our operation to 800 aircraft and 300 million guests within the next 10 years.

Ryanair Labs is the technology brand of Ryanair. Labs is a state of-the-art digital & IT innovation hub creating Europe’s Leading Travel Experience for our customers.

The Role:

This role is part of the Information Security Department of Ryanair. As a key player in our offensive security operations, you will lead and execute penetration testing engagements across networks, applications, cloud environments, and physical systems. Your expertise will help to identify critical vulnerabilities, validate security controls, and enhance our overall security posture.

Responsibilities:

• Conduct penetration tests on web applications, internal and external networks, mobile platforms, APIs, cloud environments (e.g., AWS, Azure), PCI environments and physical assets. This task includes the scope definition and inventorying of the applications that will be assessed.
• Deliver detailed technical reports and executive summaries with clear remediation recommendations.
• Assist in the development of internal methodologies, frameworks, and toolsets.
• Develop custom tools, scripts, and exploits to support advanced testing scenarios.
• Stay current with the latest threats, vulnerabilities, and exploit techniques.

Requirements

• 4+ years of information security and penetration testing work experience preferred.
• Proficiency in security assessments and the ability to conduct threat modelling for a wide range of systems, applications, and infrastructure.
• Strong understanding of network protocols, operating systems (Linux, Windows), web applications, Active Directory, and cloud environments (e.g., AWS, Azure).
• Good programming skills. Python is our default, but any other language is welcome.
• Experience in engaging with business stakeholders to define test scope, gather requirements, and communicate findings.
• Excellent communication skills in English, with the ability to translate complex technical findings into clear reports for both technical and non-technical audiences.
• Capable of working independently or in a team.
• Relevant penetration testing or offensive security certifications (e.g., OSCP, OSWE, CRTP, CRTE) are preferred.

Benefits

• A competitive but flexible technical  career plan.
• We believe in an hybrid working model, you can work up to three days per week remote, but you are also going to enjoy the excellent work environment at our modern offices in the heart of Madrid.
• Optional discounts on health insurances  (various companies).
• Travel discounts, of course!.

Apply today to discuss the role in more detail!

Competencies