Senior Penetration Tester

We are currently recruiting for an experienced Penetration Tester specialising in Infrastructure Testing on behalf of a leading UK-based security consultancy. This company is renowned for its innovative approach to security, providing ongoing vulnerability assurance and continuous threat management through its advanced portal solution, beyond traditional point-in-time assessments.

The Role:

As an Infrastructure Penetration Tester, you will be responsible for conducting thorough and formal assessments, delivering high-quality written reports that meet both industry standards and client deadlines. You will also support pre-engagement activities such as scoping projects and drafting proposals. Research into vulnerabilities within infrastructure and applications will be a key part of your role, with a commitment to responsible disclosure practices.

Key Responsibilities:

• Conduct Comprehensive Testing: Perform formal, in-depth penetration tests focused on infrastructure and occasionally other areas.
• Reporting: Deliver detailed, well-structured technical and non-technical reports in English.
• Vulnerability Assessments: Identify vulnerabilities and provide actionable remediation recommendations.
• Pre-Engagement Support: Assist in scoping client projects and drafting proposals to ensure clear and accurate planning.
• Project Management: Manage penetration testing projects, ensuring timely completion within deadlines.
• Research & Collaboration: Investigate new vulnerabilities and share findings with the team while adhering to responsible disclosure standards.
• Mentorship: Provide guidance to junior team members and graduates, where appropriate.

Key Requirements:

• Experience: Demonstrated experience in Infrastructure Penetration Testing, with expertise in additional testing areas.
• Technical Knowledge: Strong proficiency in both Windows and Linux environments, with a deep understanding of Active Directory, wireless technologies, and multiple operating systems.
• Cloud Experience: Experience in assessing cloud and hybrid environments, particularly with AWS and Azure.
• Programming Skills: Proficiency in programming or scripting in your preferred language.
• Certifications: Security certifications such as OSCP, CREST CRT, OSEP, CCT INF, or CTM are highly desirable
• Virtualisation Knowledge: Solid understanding of virtualisation technologies.
• Location: Remote (UK-based), with occasional visits to client sites and the company office as required.
• Eligibility: Candidates must be based in the UK and have the right to work, as sponsorship is not available for this role.

This is a fantastic opportunity for a skilled Penetration Tester with a passion for Cyber Security to join a forward-thinking consultancy. If you’re seeking a challenging and rewarding role with opportunities for growth, we’d love to hear from you!