Mistral AI Logo

Mistral AI

Pentester, Offensive Forward Deployment Engineer

Reposted Yesterday
Be an Early Applicant
In-Office or Remote
Hiring Remotely in London, Greater London, England, GBR
Senior level
In-Office or Remote
Hiring Remotely in London, Greater London, England, GBR
Senior level
Run offensive security engagements for clients and Mistral: scope, execute tooling, triage findings, advise on remediation, pentest internal systems, hunt vulnerabilities in the wild, and guide development of AI-powered offensive tooling and benchmarks.
The summary above was generated by AI
About Mistral 
 
At Mistral AI, we believe in the power of AI to simplify tasks, save time, and enhance learning and creativity. Our technology is designed to integrate seamlessly into daily working life.
 
We democratize AI through high-performance, optimized, open-source and cutting-edge models, products and solutions. Our comprehensive AI platform is designed to meet enterprise needs, whether on-premises or in cloud environments. Our offerings include le Chat, the AI assistant for life and work.
 
We are a dynamic, collaborative team passionate about AI and its potential to transform society.
Our diverse workforce thrives in competitive environments and is committed to driving innovation. Our teams are distributed between France, USA, UK, Germany and Singapore. We are creative, low-ego and team-spirited.
 
Join us to be part of a pioneering company shaping the future of AI. Together, we can make a meaningful impact. See more about our culture on https://mistral.ai/careers.
 
Role summary

We are seeking hands-on Pentesters to join our Offensive Security team. You will be running our maturing offensive solution on real clients engagements while also hunting for vulnerabilities in Mistral's own systems and in the wild. This is a unique opportunity to break real client systems, discover 0-days for fun, and help build the AI that automates offensive security at scale. 

Your work will directly impact both our clients' security posture and Mistral's own defensive capabilities. You'll be at the forefront of our offensive security practice, with the chance to shape how AI transforms penetration testing. We welcome offensive security experts at all levels who are passionate about breaking systems and building the tools that make security testing more effective.

 
What you will do
 

Client Engagements
• Run our offensive security solution on real client engagements: scoping, executing tooling, and delivering results
• Triaging output and killing false positives to ensure high-quality, actionable findings for clients
• Advise clients through deployment and remediation, acting as a trusted security partner
• Travel to client premises and switch between engagements in a classic pentest consulting cadence

Internal Dogfooding
• Pentest Mistral's own systems, finding vulnerabilities before our offensive solution matures
• Hunt for vulnerabilities internally and on open-source/in-the-wild targets between client engagements
• Transfer knowledge and findings to the forming internal security team
• Act as Mistral's own first customer for our cyber harnesses

Guiding the Harness
• Use real offensive expertise to steer the cyber harness: identify vulnerabilities it should catch
• Validate and triage the harness's output, ensuring it meets the high standards of human pentesters
• Benchmark human vs. agent performance, helping to close the gap between automated and manual testing
• Contribute to the development of AI-powered offensive security capabilities

 
About you
 

• Current P0 specialty: web / AppSec + source-code review; also high-value: internal / Active Directory, cloud (AWS/GCP/Azure), CI/CD & supply chain
• Senior enough to run an engagement solo from scoping to delivery
• Uses AI in your workflow with a nuanced view of its capabilities and limitations
• Comfortable being client-facing, mobile, and switching between different engagements
• Proven track record of delivering high-quality penetration testing results
• Strong problem-solving abilities and attention to detail in vulnerability identification

It would be ideal if you also have:
• Build your own offensive tooling (builder mindset that scales your impact)
• Published CVEs / GHSAs or a strong bug-bounty track record
• Conference talks, CTF achievements, or other public recognition in the security community
• Strong code review skills for multiple programming languages
• Experience with AI/ML systems and their unique security challenges
• Contributions to open-source security tools or research

Location & Remote

This role is open to remote in Europe. Ideally you would be based in one of our European offices (Paris, France and London, UK). We strongly believe in the value of in-person collaboration and we encourage going to the office as much as we can (at least 3 days per months) to create bonds and smooth communication. Our remote policy aims to provide flexibility, improve work-life balance and increase productivity.

What we offer

💰 Competitive salary and equity (stock-options)

🧑‍⚕️ Health insurance

🚴 Transportation allowance

🥎 Sport allowance

🥕 Meal vouchers

💰 Private pension plan

🍼 Generous parental leave policy

🌎 Visa sponsorship
By applying, you agree to our Applicant Privacy Policy.


Location & Remote
This role is primarily based at one of our European offices (Paris, France and London, UK). We will prioritize candidates who either reside there or are open to relocating. We strongly believe in the value of in-person collaboration to foster strong relationships and seamless communication within our team.
 
In certain specific situations, we will also consider remote candidates based in one of the countries listed in this job posting — currently France & UK. In that case, we ask all new hires to visit our local office:
•  for the first week of their onboarding (accommodation and travelling covered)
•  then at least 3 days per month
 
What we offer
 
💰 Competitive salary and equity
🧑‍⚕️ Health insurance
🚴 Transportation allowance
🥎 Sport allowance
🥕 Meal vouchers
💰 Private pension plan
🍼 Parental : Generous parental leave policy
🌎 Visa sponsorship
 
By applying, you agree to our Applicant Privacy Policy.

Similar Jobs

An Hour Ago
Easy Apply
Remote
Easy Apply
Senior level
Senior level
Artificial Intelligence • Consumer Web • Digital Media • Information Technology • Social Impact • Software
Lead end-to-end development of full-stack AI features on a Ruby on Rails backend and React frontend. Build and optimize AI infrastructure for production LLM inference, implement RAG and AI agents, design and run experiments and A/B tests, improve tooling and processes for scale, collaborate with designers and leaders, and iterate quickly while maintaining high code quality and user experience.
Top Skills: Ai AgentsLarge Language ModelsMySQLPostgresReactRetrieval-Augmented GenerationRuby On Rails
2 Hours Ago
Easy Apply
Remote
Easy Apply
Mid level
Mid level
Cloud • Security • Software • Cybersecurity • Automation
Own a mid-market France account book and run the full sales cycle to grow GitLab adoption. Manage discovery, negotiation, and close; maintain evidence-based pipeline and account plans; coordinate pre/post-sales with technical teams; contribute product feedback and improve sales processes.
Top Skills: AIApplication Lifecycle ManagementDevsecopsGitGitlab
9 Hours Ago
Remote or Hybrid
Senior level
Senior level
Artificial Intelligence • Cloud • HR Tech • Information Technology • Productivity • Software • Automation
Lead large, complex ServiceNow implementation programs from initiation through delivery and value realization. Provide programme leadership, governance, stakeholder management, risk mitigation, and cross-functional team coordination. Drive adoption using Now Create methodology, AI-enabled tools, and delivery tooling; mentor teams, support pre-sales, and optimize outcomes to meet customer business objectives.
Top Skills: AgileAi-Enabled ToolsAutomationCloud PlatformNow CreateSafeScrumServicenow

What you need to know about the London Tech Scene

London isn't just a hub for established businesses; it's also a nursery for innovation. Boasting one of the most recognized fintech ecosystems in Europe, attracting billions in investments each year, London's success has made it a go-to destination for startups looking to make their mark. Top U.K. companies like Hoptin, Moneybox and Marshmallow have already made the city their base — yet fintech is just the beginning. From healthtech to renewable energy to cybersecurity and beyond, the city's startups are breaking new ground across a range of industries.

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account