Expert en tests de pénétration et d'intrusion

MC Expert

Gosselies, Belgiumhybridcontractsenior

We are looking for a Penetration and Intrusion Testing Expert for a full-time mission estimated to last around 10 days, starting as soon as possible. The role involves validating a new system image and several new laptop models as part of the migration to Windows 11, with a mix of on-site and remote work.

Description (English)

Mission Terms

As part of our activities, we are looking for a Penetration and Intrusion Testing Expert. This is a full-time mission estimated to last ~ 10 days and will start as soon as possible. Part of the mission can be done remotely in agreement with the manager, but a presence at the Gosselies site for at least 2 days per week is mandatory. Additional days on-site may be requested depending on service needs. The Gosselies site is not easily accessible by public transport, so having a driver's license and a vehicle will be preferable for travel.

Mission Context

You will be part of the Information Security Office team.

Main Tasks:

As part of the migration project to Windows 11, a new system image and several new laptop models must be validated before deployment in production. The goal of the penetration test is to assess the security robustness of the Windows image, associated hardware configurations, and native protection mechanisms (TPM, Secure Boot, BIOS/UEFI hardening, Defender, etc.). This test aims to provide assurance that the deployed endpoints meet internal security requirements and limit the risk of privilege escalation, local compromise, or secret extraction.

Target Machines:

•1xT16 migration windows 10 -> windows 11,

•1xT16 Windows 11

•1xDell Pro 16 Plus Windows 11

Windows 11 Image

•System configuration (GPO, baselines, hardening).

•Defender/antivirus/EDR settings.

•Local attack surface (rights, services, configurations).

•Encryption (BitLocker).

•Boot processes (Secure Boot, UEFI Lockdown).

•Internal versioning and packaging.

•Etc...

Hardware

•Activation and robustness of TPM 2.0.

•Securing UEFI/BIOS (passwords, disabling external boot ports).

•Testing on interfaces (USB, Thunderbolt).

•Verification of BitLocker key erasure mode via hardware events.

•Etc...

Connectivity

•Testing in connected / disconnected mode.

•MDM posture – onboarded machine (Intune)

Recommended Tests

•Security configuration analysis (Windows 11 baseline).

•Local privilege escalation tests (non-destructive).

•Bypassing security policies (Defender, SmartScreen, SRP/Applocker).

•Verification of secret protection (LSA Protection, Credential Guard...).

•Analysis of isolation mechanisms (sandboxing, AppContainer).

•Verification of local network hardening (firewall, open services).

•Testing on hardware protections (Secure Boot, TPM misuse).

•Non-intrusive persistence attempts.

•Etc...

Desired Profile

The required technical skills and associated seniority levels are listed in the Connecting Expertise skills section.

From a soft skills perspective, the consultant is expected to be:

•Autonomous

•A good communicator

•Flexible

•Able to simplify technical points for the Business

•Good at writing summary documents

•Capable of assessing the severity of discovered vulnerabilities

•Able to synthesize and communicate effectively with both the Business and a technical team

The position requires administrative rights or access to classified information, making it high-risk for information systems. Therefore, in compliance with ISO27001 standards, we are required to verify backgrounds by contacting at least one reference provided for any candidate selected for the mission. If your candidate is selected for an interview, you will be asked to provide the contact details of one or more previous managers at the end client (recent experiences) for contact. The communication of these references constitutes agreement by the candidate and the mentioned person(s). This data will be deleted after 2.5 years following the end of collaboration or after a maximum of one and a half years if the recruitment process is unsuccessful.

The mission is set to start on 13/04/2026, with interviews scheduled for 08/04/2026 in the morning. Please block this time slot with the proposed consultants. To move forward quickly after the interviews, we ask that you include the contact details of the reference person in the submitted proposal. This person will be contacted in case the consultant is selected.

Competitive

Job Info

Type

contract

Level

senior

Work

hybrid

Salary

Competitive

Posted

Mar 30, 2026

Start Date

Apr 13, 2026

Deadline

Apr 3, 2026

Tech Stack

Windows 11TPM 2.0Secure BootBitLockerUSBThunderbolt