Devoteam Cyber Trust | Product Engineer – Security Platform

Mission Develop and evolve the vulnerability management platform within the Offensive Security team, specifically in the Offensive Engineering and Innovation domain. Ensure fast delivery, high quality, and alignment with the real needs of pentesting services for both clients and internal teams. Role Context This role is part of the Offensive Engineering and Innovation team, responsible for developing and evolving the technical capabilities that support offensive security services. The platform is used daily by security consultants and clients and is a central component in the execution, management, and reporting of penetration tests, with strong integration across tools and systems. Responsibilities Develop features aligned with real pentesting team needs Leverage LLMs to accelerate development while maintaining control over quality and consistency Validate and refine generated code (do not assume correctness) Ensure proper testing (unit and integration) Participate in requirements definition and clarification Contribute to architecture decisions and platform evolution Work on integrations with external tools Ensure code consistency and readability Contribute to the continuous improvement of the platform Current Stack PHP (Symfony) React Docker APIs and external integrations Technical Skills Hands-on experience in web development (backend and frontend) Solid knowledge of REST APIs Experience with modern frameworks (e.g., Symfony, React, or equivalents) Experience with testing Ability to use LLMs in development (prompting, iteration, validation) Strong code reading and review capability Understanding of architecture and trade-offs Experience with debugging and problem-solving Experience with application security Experience with CI/CD Experience with complex integrations Familiarity with pentesting workflows Non-Technical Skills Pragmatism Attention to detail Ability to question outputs (including from LLMs) Autonomy Ability to work closely with operational teams Success Indicators Robust, tested, and readable code Fast delivery with consistent quality Low rework Strong integration with the broader ecosystem Active contribution to product improvement What we offer: Professional development and monitoring talent; Commitment to our employees' development; Collaboration in a company that is constantly growing and evolving; Strong organisational culture: collaboration, sharing, flexibility, integrity and low ego. Would you like to join our team? Then send your CV. Devoteam Cyber Trust is the Cybersecurity specialist arm of the Devoteam Group. With our 800+ experts located across EMEA, we aim to establish cybersecurity as an enabler of business success rather than a gatekeeper. We leverage an end-to-end approach to Cyber Resilience, Applied Security, and Managed Security services to secure the tech journey of large and medium-sized companies from all sectors and industries. Since 2009, previously known as INTEGRITY, our team based in Portugal is specialised in providing cutting-edge Managed Security Services that combine its expertise and proprietary technology to consistently and effectively reduce the cyber risk of our clients. The comprehensive service range includes Persistent Intrusion Testing, ISO 27001, PCI-DSS, GRC Consulting and Solutions, and Third-Party Risk Management. ISO 27001 (Information Security) and ISO 9001 (Quality) certified, PCI-QSA, and member of CREST and CIS - Centre for Internet Security, we provide services to a considerable number of clients, operating in more than 20 countries.