Executive Summary:

The IT HUB AI Penetration Testing Automation Specialist maintains knowledge of AI advances in offensive security in order to lead the necessary transformation of defensive capabilities. The role combines product ownership, augmented development, AI security testing, and CI/CD security to proactively identify gaps before adversaries do, and to translate findings into concrete improvements for cyber defense teams.

Acting as Cyber Lab Product Owner and Product Strategy Owner, this specialist drives the full lifecycle of new AI cybersecurity products and tooling, contributes to technical standards, and serves as SPOC for Cyberdefense and the Cyber Customer Trust team (CCT). As a certified expert in AI security (SANS SEC545 training or equivalent highly recommended), they promote realistic, evidence‑based security practices for securing AI systems.

Role Evolution: The scope of the IT HUB AI Penetration Testing Automation Specialist role may evolve with the maturity of AI usage, regulatory changes and the development of new AI platforms within Equans.

Key Missions:

The AI Penetration Testing Automation Specialist is responsible for conceiving, building and operating specialized AI and automation solutions for the cybersecurity teams. They ensure that AI‑driven adversarial techniques are safely addressed in the Equans Cybersecurity landscape.

• Act as Cyber Lab Product Owner for AI cybersecurity solutions.
• Define and own the product strategy and roadmap for the Cyber AI lab.
• Bridge offensive testing outcomes with Cyberdefense and CCT teams to improve detection, response and hardening.
• Champion secure CI/CD practices to ensure software delivery pipelines are robust and compliant.
• Serve as a visible AI security expert and contact point for the cybersecurity community on technical AI threats and mitigations.

Mission Outcome: Cyberdefense stays on pace with AI offensive capabilities evolution. Cyber AI use cases are developed and tested, separating myth from real value.

Required Profile:

The IT HUB AI Penetration Testing Automation Specialist combines strong technical cybersecurity knowledge and specific skills on AI and ML security. The role requires both technical literacy and an offensive mindset with the ability to translate outcomes in realistic recommendations for stakeholders.

Education & Background:

• University degree in Computer Science, Information Security, Engineering or equivalent experience.
• 5+ years in offensive security, red teaming, DevSecOps, AI/ML engineering or security automation, including hands‑on development.
• SANS SEC545 (Cloud Security Architecture and Operations) or equivalent advanced security certification required or committed to obtain; additional offensive security certs (e.g. OSCP, GIAC) are a plus.
• Strong knowledge of Python or similar scripting language, CI/CD tools (e.g. GitLab CI, GitHub Actions, Azure DevOps), containerization, cloud platforms, and AI/ML or LLM frameworks.
• Professional Experience:
• Experience working in an international, multi-stakeholder environment.
• Familiarity with secure development lifecycle (SDLC) or MLOps/AI lifecycle practices.

Skills and Competencies:

High technical skills are required to successfully deliver the missions of the IT HUB AI Penetration Testing Automation Specialist.

• • Ability to design and run offensive security or red‑team style activities in a controlled and compliant manner.
• Hands‑on experience with AI/ML or LLM technologies and their specific security challenges.
• Comfortable presenting complex technical topics in a clear, pragmatic and demystifying way to diverse audiences.
• Analytical mindset, critical thinking, communication, ability to challenge the status quo, pedagogy and collaboration across technical and non‑technical stakeholders.
• Strong “walks the talk” attitude: prefers demonstrations and proof‑of‑concepts over theoretical discussions only.

Stakeholders and Collaboration:

The AI Penetration Testing Automation Specialist operates within the IT HUB and Cyber AI Lab, collaborating closely with cybersecurity, IT and business stakeholders at Group and local levels.

• Core interfaces: Cyber AI Lab team members, Cyberdefense (SOC, CSIRT, threat hunters), CCT, security architects, SLS AI and cloud teams.
• Ways of working: Agile / product‑oriented delivery, documented experiments, regular demos and show‑cases, clear reporting of risks and benefits.

Success Criteria and KPIs:

Success in the IT HUB AI Penetration Testing Automation Specialist role is measured through both qualitative and quantitative indicators.

• Percentage of roadmap items delivered on time for cyber AI and automation products.
• Satisfaction of Cyberdefense and CCT with quality and usefulness of Cyber lab products.
• Correct usage of security configurations and governance features on agentic platforms: Power Platform, Agent Platform and Copilot Studio at the moment.
• Positive feedback from Cyber AI Lab, GRC, Legal and local AI teams regarding support and collaboration.
• Impact of communication initiatives a plus.