Senior Penetration Tester 12 Month Initial Contract £750 - £850 per day (Inside IR35) Cheltenham or London 1 day per week on-site SC Clearance Eligibility Required MERITUS Talent are working with a boutique Defence consultancy supporting a UK Central Government department in their Cyber Security function click apply for full job details
Jul 16, 2025
Contractor
Senior Penetration Tester 12 Month Initial Contract £750 - £850 per day (Inside IR35) Cheltenham or London 1 day per week on-site SC Clearance Eligibility Required MERITUS Talent are working with a boutique Defence consultancy supporting a UK Central Government department in their Cyber Security function click apply for full job details
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons At our core, we believe that growth comes from exposure to diverse challenges. In this role, you'll have the opportunity to work across a wide range of engagements, thanks to the trust and scale of our clients. You will get hands-on experience with web application and API testing, Wireless assessments, Internal infrastructure tests, Mobile App security, Red and Purple team operations, Physical intrusion testing, hardware analysis, and more. No two projects are quite the same, and that's exactly how we like it. This variety allows our team to explore different domains, deepen existing strengths, and discover new areas of interest, all while solving real-world problems in live environments. Whether you're still shaping your focus or refining an existing specialty, you'll have space here to grow meaningfully. Manage risk for our clients to make them stronger for the future. Our Digital Services are designed to enable organisations to leverage our innovative methodologies, technology, and highly experienced professionals to manage their business risks most effectively. Working at BDO offers curious-minded people excellent exposure to all aspects of business strategy, operations and more. We're a dynamic team of internal auditors, accountants, technology, and business transformation experts with disciplines in finance, risk, projects and change, cyber and digital, amongst others. Our extensive network and depth of experience mean we work in a highly client-centric way, focused on providing a collaborative, tailor-made advisory service. Our team helps clients manage their business-critical threats, such as cyber events, and build resilient businesses capable of responding to internal and external events which may interrupt their operations. Being known for exceptional client service in our chosen markets, we put innovation and agility at the heart of everything we do. This is your chance to join a fast-paced, growing team and help shape the future of Digital at BDO. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly skilled and experienced offensive security penetration tester to join our dynamic team. This role involves conducting sophisticated penetration testing and red team engagements across various client systems and applications. The successful candidate will be instrumental in identifying vulnerabilities, enhancing client security postures, and leading initiatives to develop cutting-edge penetration testing methodologies and tools. Clients across industries and geographies, staying at the forefront of knowledge of the threat landscape, cyber defence best practices and regulatory expectations. Requirements : • Strict Requirement: Strong certification in penetration testing such as OSCP (Offensive Security Certified Professional), CTM (Check Team Member), CRT (CREST Registered Tester) and OSWA (Offensive Security Web Attacks) or even better if you have Advanced certifications such as OSEP(OffSec Experience Penetration Tester), CCSAM (CREST Certified Simulated Attack Manager) and CTL (Check Team Leader). • Solid experience in offensive security-whether through professional penetration testing, red teaming, bug bounty work, capture-the-flag competitions, or personal research projects. • Proven ability to deliver impactful client engagements, demonstrating both technical depth and a practical understanding of risk. • Deep knowledge of network protocols, different services, operating systems, different applications and how to break them. • Proficiency in tools such as Metasploit, Burp Suite or other proxies such as Caido or Zap, Nessus, CobaltStrike or other C2 frameworks, etc. Bonus points for building your own tools, contributing to community projects, or chaining techniques creatively. • Excellent problem-solving skills and a passion for ethical hacking that is persistent, curious, and know how to pivot when things do not go as planned. • Experience coding and scripting custom tools in Python, Bash, PowerShell, or anything else that gets the job done. • Ability to communicate technical findings clearly to both technical and non-technical stakeholders. Be yourself It's at the core of the company's and team's vision. You'll be able to truly be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suits them, their teams, and the tasks at hand. At BDO, we're committed to helping you achieve your personal and professional goals. We provide structured development frameworks, resources, and mentorship to support your growth-whether you're looking to deepen a specific skillset or broaden your expertise across domains. We'll align your client engagements with your learning objectives, giving you the chance to apply new skills, explore areas of interest, and gain practical experience. You won't be navigating this alone-our team culture emphasizes peer support, collaboration, and knowledge sharing on every project. We're in it together Mutual support and respect are one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fueling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions. We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
Jul 16, 2025
Full time
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons At our core, we believe that growth comes from exposure to diverse challenges. In this role, you'll have the opportunity to work across a wide range of engagements, thanks to the trust and scale of our clients. You will get hands-on experience with web application and API testing, Wireless assessments, Internal infrastructure tests, Mobile App security, Red and Purple team operations, Physical intrusion testing, hardware analysis, and more. No two projects are quite the same, and that's exactly how we like it. This variety allows our team to explore different domains, deepen existing strengths, and discover new areas of interest, all while solving real-world problems in live environments. Whether you're still shaping your focus or refining an existing specialty, you'll have space here to grow meaningfully. Manage risk for our clients to make them stronger for the future. Our Digital Services are designed to enable organisations to leverage our innovative methodologies, technology, and highly experienced professionals to manage their business risks most effectively. Working at BDO offers curious-minded people excellent exposure to all aspects of business strategy, operations and more. We're a dynamic team of internal auditors, accountants, technology, and business transformation experts with disciplines in finance, risk, projects and change, cyber and digital, amongst others. Our extensive network and depth of experience mean we work in a highly client-centric way, focused on providing a collaborative, tailor-made advisory service. Our team helps clients manage their business-critical threats, such as cyber events, and build resilient businesses capable of responding to internal and external events which may interrupt their operations. Being known for exceptional client service in our chosen markets, we put innovation and agility at the heart of everything we do. This is your chance to join a fast-paced, growing team and help shape the future of Digital at BDO. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly skilled and experienced offensive security penetration tester to join our dynamic team. This role involves conducting sophisticated penetration testing and red team engagements across various client systems and applications. The successful candidate will be instrumental in identifying vulnerabilities, enhancing client security postures, and leading initiatives to develop cutting-edge penetration testing methodologies and tools. Clients across industries and geographies, staying at the forefront of knowledge of the threat landscape, cyber defence best practices and regulatory expectations. Requirements : • Strict Requirement: Strong certification in penetration testing such as OSCP (Offensive Security Certified Professional), CTM (Check Team Member), CRT (CREST Registered Tester) and OSWA (Offensive Security Web Attacks) or even better if you have Advanced certifications such as OSEP(OffSec Experience Penetration Tester), CCSAM (CREST Certified Simulated Attack Manager) and CTL (Check Team Leader). • Solid experience in offensive security-whether through professional penetration testing, red teaming, bug bounty work, capture-the-flag competitions, or personal research projects. • Proven ability to deliver impactful client engagements, demonstrating both technical depth and a practical understanding of risk. • Deep knowledge of network protocols, different services, operating systems, different applications and how to break them. • Proficiency in tools such as Metasploit, Burp Suite or other proxies such as Caido or Zap, Nessus, CobaltStrike or other C2 frameworks, etc. Bonus points for building your own tools, contributing to community projects, or chaining techniques creatively. • Excellent problem-solving skills and a passion for ethical hacking that is persistent, curious, and know how to pivot when things do not go as planned. • Experience coding and scripting custom tools in Python, Bash, PowerShell, or anything else that gets the job done. • Ability to communicate technical findings clearly to both technical and non-technical stakeholders. Be yourself It's at the core of the company's and team's vision. You'll be able to truly be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suits them, their teams, and the tasks at hand. At BDO, we're committed to helping you achieve your personal and professional goals. We provide structured development frameworks, resources, and mentorship to support your growth-whether you're looking to deepen a specific skillset or broaden your expertise across domains. We'll align your client engagements with your learning objectives, giving you the chance to apply new skills, explore areas of interest, and gain practical experience. You won't be navigating this alone-our team culture emphasizes peer support, collaboration, and knowledge sharing on every project. We're in it together Mutual support and respect are one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fueling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions. We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons At our core, we believe that growth comes from exposure to diverse challenges. In this role, you'll have the opportunity to work across a wide range of engagements, thanks to the trust and scale of our clients. You will get hands-on experience with web application and API testing, Wireless assessments, Internal infrastructure tests, Mobile App security, Red and Purple team operations, Physical intrusion testing, hardware analysis, and more. No two projects are quite the same, and that's exactly how we like it. This variety allows our team to explore different domains, deepen existing strengths, and discover new areas of interest, all while solving real-world problems in live environments. Whether you're still shaping your focus or refining an existing specialty, you'll have space here to grow meaningfully. Manage risk for our clients to make them stronger for the future. Our Digital Services are designed to enable organisations to leverage our innovative methodologies, technology, and highly experienced professionals to manage their business risks most effectively. Working at BDO offers curious-minded people excellent exposure to all aspects of business strategy, operations and more. We're a dynamic team of internal auditors, accountants, technology, and business transformation experts with disciplines in finance, risk, projects and change, cyber and digital, amongst others. Our extensive network and depth of experience mean we work in a highly client-centric way, focused on providing a collaborative, tailor-made advisory service. Our team helps clients manage their business-critical threats, such as cyber events, and build resilient businesses capable of responding to internal and external events which may interrupt their operations. Being known for exceptional client service in our chosen markets, we put innovation and agility at the heart of everything we do. This is your chance to join a fast-paced, growing team and help shape the future of Digital at BDO. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly skilled and experienced offensive security penetration tester to join our dynamic team. This role involves conducting sophisticated penetration testing and red team engagements across various client systems and applications. The successful candidate will be instrumental in identifying vulnerabilities, enhancing client security postures, and leading initiatives to develop cutting-edge penetration testing methodologies and tools. Clients across industries and geographies, staying at the forefront of knowledge of the threat landscape, cyber defence best practices and regulatory expectations. Requirements : • Strict Requirement: Strong certification in penetration testing such as OSCP (Offensive Security Certified Professional), CTM (Check Team Member), CRT (CREST Registered Tester) and OSWA (Offensive Security Web Attacks) or even better if you have Advanced certifications such as OSEP(OffSec Experience Penetration Tester), CCSAM (CREST Certified Simulated Attack Manager) and CTL (Check Team Leader). • Solid experience in offensive security-whether through professional penetration testing, red teaming, bug bounty work, capture-the-flag competitions, or personal research projects. • Proven ability to deliver impactful client engagements, demonstrating both technical depth and a practical understanding of risk. • Deep knowledge of network protocols, different services, operating systems, different applications and how to break them. • Proficiency in tools such as Metasploit, Burp Suite or other proxies such as Caido or Zap, Nessus, CobaltStrike or other C2 frameworks, etc. Bonus points for building your own tools, contributing to community projects, or chaining techniques creatively. • Excellent problem-solving skills and a passion for ethical hacking that is persistent, curious, and know how to pivot when things do not go as planned. • Experience coding and scripting custom tools in Python, Bash, PowerShell, or anything else that gets the job done. • Ability to communicate technical findings clearly to both technical and non-technical stakeholders. Be yourself It's at the core of the company's and team's vision. You'll be able to truly be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suits them, their teams, and the tasks at hand. At BDO, we're committed to helping you achieve your personal and professional goals. We provide structured development frameworks, resources, and mentorship to support your growth-whether you're looking to deepen a specific skillset or broaden your expertise across domains. We'll align your client engagements with your learning objectives, giving you the chance to apply new skills, explore areas of interest, and gain practical experience. You won't be navigating this alone-our team culture emphasizes peer support, collaboration, and knowledge sharing on every project. We're in it together Mutual support and respect are one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fueling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions. We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
Jul 16, 2025
Full time
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons At our core, we believe that growth comes from exposure to diverse challenges. In this role, you'll have the opportunity to work across a wide range of engagements, thanks to the trust and scale of our clients. You will get hands-on experience with web application and API testing, Wireless assessments, Internal infrastructure tests, Mobile App security, Red and Purple team operations, Physical intrusion testing, hardware analysis, and more. No two projects are quite the same, and that's exactly how we like it. This variety allows our team to explore different domains, deepen existing strengths, and discover new areas of interest, all while solving real-world problems in live environments. Whether you're still shaping your focus or refining an existing specialty, you'll have space here to grow meaningfully. Manage risk for our clients to make them stronger for the future. Our Digital Services are designed to enable organisations to leverage our innovative methodologies, technology, and highly experienced professionals to manage their business risks most effectively. Working at BDO offers curious-minded people excellent exposure to all aspects of business strategy, operations and more. We're a dynamic team of internal auditors, accountants, technology, and business transformation experts with disciplines in finance, risk, projects and change, cyber and digital, amongst others. Our extensive network and depth of experience mean we work in a highly client-centric way, focused on providing a collaborative, tailor-made advisory service. Our team helps clients manage their business-critical threats, such as cyber events, and build resilient businesses capable of responding to internal and external events which may interrupt their operations. Being known for exceptional client service in our chosen markets, we put innovation and agility at the heart of everything we do. This is your chance to join a fast-paced, growing team and help shape the future of Digital at BDO. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly skilled and experienced offensive security penetration tester to join our dynamic team. This role involves conducting sophisticated penetration testing and red team engagements across various client systems and applications. The successful candidate will be instrumental in identifying vulnerabilities, enhancing client security postures, and leading initiatives to develop cutting-edge penetration testing methodologies and tools. Clients across industries and geographies, staying at the forefront of knowledge of the threat landscape, cyber defence best practices and regulatory expectations. Requirements : • Strict Requirement: Strong certification in penetration testing such as OSCP (Offensive Security Certified Professional), CTM (Check Team Member), CRT (CREST Registered Tester) and OSWA (Offensive Security Web Attacks) or even better if you have Advanced certifications such as OSEP(OffSec Experience Penetration Tester), CCSAM (CREST Certified Simulated Attack Manager) and CTL (Check Team Leader). • Solid experience in offensive security-whether through professional penetration testing, red teaming, bug bounty work, capture-the-flag competitions, or personal research projects. • Proven ability to deliver impactful client engagements, demonstrating both technical depth and a practical understanding of risk. • Deep knowledge of network protocols, different services, operating systems, different applications and how to break them. • Proficiency in tools such as Metasploit, Burp Suite or other proxies such as Caido or Zap, Nessus, CobaltStrike or other C2 frameworks, etc. Bonus points for building your own tools, contributing to community projects, or chaining techniques creatively. • Excellent problem-solving skills and a passion for ethical hacking that is persistent, curious, and know how to pivot when things do not go as planned. • Experience coding and scripting custom tools in Python, Bash, PowerShell, or anything else that gets the job done. • Ability to communicate technical findings clearly to both technical and non-technical stakeholders. Be yourself It's at the core of the company's and team's vision. You'll be able to truly be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suits them, their teams, and the tasks at hand. At BDO, we're committed to helping you achieve your personal and professional goals. We provide structured development frameworks, resources, and mentorship to support your growth-whether you're looking to deepen a specific skillset or broaden your expertise across domains. We'll align your client engagements with your learning objectives, giving you the chance to apply new skills, explore areas of interest, and gain practical experience. You won't be navigating this alone-our team culture emphasizes peer support, collaboration, and knowledge sharing on every project. We're in it together Mutual support and respect are one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fueling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions. We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons At our core, we believe that growth comes from exposure to diverse challenges. In this role, you'll have the opportunity to work across a wide range of engagements, thanks to the trust and scale of our clients. You will get hands-on experience with web application and API testing, Wireless assessments, Internal infrastructure tests, Mobile App security, Red and Purple team operations, Physical intrusion testing, hardware analysis, and more. No two projects are quite the same, and that's exactly how we like it. This variety allows our team to explore different domains, deepen existing strengths, and discover new areas of interest, all while solving real-world problems in live environments. Whether you're still shaping your focus or refining an existing specialty, you'll have space here to grow meaningfully. Manage risk for our clients to make them stronger for the future. Our Digital Services are designed to enable organisations to leverage our innovative methodologies, technology, and highly experienced professionals to manage their business risks most effectively. Working at BDO offers curious-minded people excellent exposure to all aspects of business strategy, operations and more. We're a dynamic team of internal auditors, accountants, technology, and business transformation experts with disciplines in finance, risk, projects and change, cyber and digital, amongst others. Our extensive network and depth of experience mean we work in a highly client-centric way, focused on providing a collaborative, tailor-made advisory service. Our team helps clients manage their business-critical threats, such as cyber events, and build resilient businesses capable of responding to internal and external events which may interrupt their operations. Being known for exceptional client service in our chosen markets, we put innovation and agility at the heart of everything we do. This is your chance to join a fast-paced, growing team and help shape the future of Digital at BDO. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly skilled and experienced offensive security penetration tester to join our dynamic team. This role involves conducting sophisticated penetration testing and red team engagements across various client systems and applications. The successful candidate will be instrumental in identifying vulnerabilities, enhancing client security postures, and leading initiatives to develop cutting-edge penetration testing methodologies and tools. Clients across industries and geographies, staying at the forefront of knowledge of the threat landscape, cyber defence best practices and regulatory expectations. Requirements : • Strict Requirement: Strong certification in penetration testing such as OSCP (Offensive Security Certified Professional), CTM (Check Team Member), CRT (CREST Registered Tester) and OSWA (Offensive Security Web Attacks) or even better if you have Advanced certifications such as OSEP(OffSec Experience Penetration Tester), CCSAM (CREST Certified Simulated Attack Manager) and CTL (Check Team Leader). • Solid experience in offensive security-whether through professional penetration testing, red teaming, bug bounty work, capture-the-flag competitions, or personal research projects. • Proven ability to deliver impactful client engagements, demonstrating both technical depth and a practical understanding of risk. • Deep knowledge of network protocols, different services, operating systems, different applications and how to break them. • Proficiency in tools such as Metasploit, Burp Suite or other proxies such as Caido or Zap, Nessus, CobaltStrike or other C2 frameworks, etc. Bonus points for building your own tools, contributing to community projects, or chaining techniques creatively. • Excellent problem-solving skills and a passion for ethical hacking that is persistent, curious, and know how to pivot when things do not go as planned. • Experience coding and scripting custom tools in Python, Bash, PowerShell, or anything else that gets the job done. • Ability to communicate technical findings clearly to both technical and non-technical stakeholders. Be yourself It's at the core of the company's and team's vision. You'll be able to truly be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suits them, their teams, and the tasks at hand. At BDO, we're committed to helping you achieve your personal and professional goals. We provide structured development frameworks, resources, and mentorship to support your growth-whether you're looking to deepen a specific skillset or broaden your expertise across domains. We'll align your client engagements with your learning objectives, giving you the chance to apply new skills, explore areas of interest, and gain practical experience. You won't be navigating this alone-our team culture emphasizes peer support, collaboration, and knowledge sharing on every project. We're in it together Mutual support and respect are one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fueling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions. We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
Jul 14, 2025
Full time
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons At our core, we believe that growth comes from exposure to diverse challenges. In this role, you'll have the opportunity to work across a wide range of engagements, thanks to the trust and scale of our clients. You will get hands-on experience with web application and API testing, Wireless assessments, Internal infrastructure tests, Mobile App security, Red and Purple team operations, Physical intrusion testing, hardware analysis, and more. No two projects are quite the same, and that's exactly how we like it. This variety allows our team to explore different domains, deepen existing strengths, and discover new areas of interest, all while solving real-world problems in live environments. Whether you're still shaping your focus or refining an existing specialty, you'll have space here to grow meaningfully. Manage risk for our clients to make them stronger for the future. Our Digital Services are designed to enable organisations to leverage our innovative methodologies, technology, and highly experienced professionals to manage their business risks most effectively. Working at BDO offers curious-minded people excellent exposure to all aspects of business strategy, operations and more. We're a dynamic team of internal auditors, accountants, technology, and business transformation experts with disciplines in finance, risk, projects and change, cyber and digital, amongst others. Our extensive network and depth of experience mean we work in a highly client-centric way, focused on providing a collaborative, tailor-made advisory service. Our team helps clients manage their business-critical threats, such as cyber events, and build resilient businesses capable of responding to internal and external events which may interrupt their operations. Being known for exceptional client service in our chosen markets, we put innovation and agility at the heart of everything we do. This is your chance to join a fast-paced, growing team and help shape the future of Digital at BDO. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly skilled and experienced offensive security penetration tester to join our dynamic team. This role involves conducting sophisticated penetration testing and red team engagements across various client systems and applications. The successful candidate will be instrumental in identifying vulnerabilities, enhancing client security postures, and leading initiatives to develop cutting-edge penetration testing methodologies and tools. Clients across industries and geographies, staying at the forefront of knowledge of the threat landscape, cyber defence best practices and regulatory expectations. Requirements : • Strict Requirement: Strong certification in penetration testing such as OSCP (Offensive Security Certified Professional), CTM (Check Team Member), CRT (CREST Registered Tester) and OSWA (Offensive Security Web Attacks) or even better if you have Advanced certifications such as OSEP(OffSec Experience Penetration Tester), CCSAM (CREST Certified Simulated Attack Manager) and CTL (Check Team Leader). • Solid experience in offensive security-whether through professional penetration testing, red teaming, bug bounty work, capture-the-flag competitions, or personal research projects. • Proven ability to deliver impactful client engagements, demonstrating both technical depth and a practical understanding of risk. • Deep knowledge of network protocols, different services, operating systems, different applications and how to break them. • Proficiency in tools such as Metasploit, Burp Suite or other proxies such as Caido or Zap, Nessus, CobaltStrike or other C2 frameworks, etc. Bonus points for building your own tools, contributing to community projects, or chaining techniques creatively. • Excellent problem-solving skills and a passion for ethical hacking that is persistent, curious, and know how to pivot when things do not go as planned. • Experience coding and scripting custom tools in Python, Bash, PowerShell, or anything else that gets the job done. • Ability to communicate technical findings clearly to both technical and non-technical stakeholders. Be yourself It's at the core of the company's and team's vision. You'll be able to truly be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suits them, their teams, and the tasks at hand. At BDO, we're committed to helping you achieve your personal and professional goals. We provide structured development frameworks, resources, and mentorship to support your growth-whether you're looking to deepen a specific skillset or broaden your expertise across domains. We'll align your client engagements with your learning objectives, giving you the chance to apply new skills, explore areas of interest, and gain practical experience. You won't be navigating this alone-our team culture emphasizes peer support, collaboration, and knowledge sharing on every project. We're in it together Mutual support and respect are one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fueling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions. We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
What You'll Be Working On: ️ Performing comprehensive penetration testing on web applications, networks, and infrastructure ️ Identifying vulnerabilities and providing detailed reports with recommendations for remediation ️ Conducting vulnerability assessments and risk analyses to identify areas of concern ️ Collaborating with development and IT teams to improve overall security posture ️ Keeping up to date with the latest security threats, techniques, and tools to ensure effective testing What We're Looking For: ️ Proven experience as a Penetration Tester or in a similar role within cybersecurity ️ Strong knowledge of common vulnerabilities (OWASP Top 10, CVEs) and attack techniques ️ Familiarity with penetration testing tools such as Burp Suite, Metasploit, Nessus, and Nmap ️ Certifications such as OSCP, CEH, or equivalent are highly desirable ️ Strong communication skills to present findings to both technical and non-technical stakeholders
Jul 14, 2025
Full time
What You'll Be Working On: ️ Performing comprehensive penetration testing on web applications, networks, and infrastructure ️ Identifying vulnerabilities and providing detailed reports with recommendations for remediation ️ Conducting vulnerability assessments and risk analyses to identify areas of concern ️ Collaborating with development and IT teams to improve overall security posture ️ Keeping up to date with the latest security threats, techniques, and tools to ensure effective testing What We're Looking For: ️ Proven experience as a Penetration Tester or in a similar role within cybersecurity ️ Strong knowledge of common vulnerabilities (OWASP Top 10, CVEs) and attack techniques ️ Familiarity with penetration testing tools such as Burp Suite, Metasploit, Nessus, and Nmap ️ Certifications such as OSCP, CEH, or equivalent are highly desirable ️ Strong communication skills to present findings to both technical and non-technical stakeholders
Do you strive to make a difference? Goaco is looking to build a team to continue solving problems using software and technology for our clients. We are developers at heart - and by the mind too. We thrive on challenges and live for logical thinking. Formed over a decade ago, we have built on our successes, all of whom have benefitted from their level-headed software solutions. The team is all like-minded individuals, with a drive to succeed in their own fields. ROLE OBJECTIVE We are seeking a highly skilled Penetration Tester with a strong background in penetration testing and network security. This role is ideal for a cybersecurity professional with experience in identifying, assessing, and mitigating security risks across various platforms. The consultant will play a critical role in evaluating and strengthening our clients' cybersecurity postures by conducting in-depth security assessments, vulnerability analysis, and developing comprehensive security strategies. RESPONSIBILITIES Conduct comprehensive penetration tests, vulnerability assessments, and security audits to identify risks and ensure compliance with industry best practices. Provide expert recommendations and solutions to mitigate identified vulnerabilities, enhancing client systems' security postures. Investigate alerts and suspicious activity to determine if an incident has occurred. Contain affected systems and networks to prevent the incident from spreading. Implement temporary measures to mitigate the impact of the incident. Work with other teams, such as IT and security operations, to develop and implement a containment strategy. Analyse incident data to determine the root cause of the incident and identify recommendations for improvement. Document and report incidents to the incident response team and other relevant stakeholders. Develop and implement security plans, policies, and training to prepare the organization to respond efficiently and effectively to cyber threats. Travel to various client locations when required (potential international travel) and deliver high quality solutions (e.g. OT testing or other IT services). Collaborate with client teams to develop, document, and implement security policies, standards, and guidelines aligned with industry standards (e.g., ISO 27001, NIST). Assist in the deployment, configuration, and management of security infrastructure and technologies, including firewalls, intrusion detection/prevention systems, and secure network architectures. Provide guidance and support on Azure security practices, leveraging expertise in Microsoft Azure security frameworks and best practices. Stay updated with the latest cybersecurity threats, trends, and regulatory changes, proactively advising clients on necessary adjustments to their security strategies. Produce detailed and accurate reports on penetration testing findings, including risk levels, remediation steps, and strategic recommendations. EXPERIENCE: Minimum of 4+ years of experience in cybersecurity, specifically in penetration testing and Incident Response, vulnerability management, and risk assessment. Public Sector experience, ideally MOD, MOJ, Must be SC clearable. Proven hands-on experience with tools such as Metasploit, Burp Suite, Nessus, and Wireshark. Strong understanding of network protocols, firewall configurations, and secure network design. Proficiency in scripting languages (e.g., Python, Bash, PowerShell) to automate tasks and streamline processes. Hands-on experience of vulnerability assessments, Incident response, penetration testing, threat hunting and compromise assessment. Experience collaborating with Sales teams as a pre-sale's cyber security consultant. Experience working in Energy or Construction industry projects is a plus. Experience in writing technical proposals along with other teams to deliver robust statement of works for client sign off. CERTIFICATIONS: CCNP/CCNA is nice to have. CREST/OSCP is nice to have. Microsoft and/or other cloud providers. ISO 27001 Lead auditor is a nice to have. SKILLS: Working knowledge of cloud security architecture, specifically within Azure (or other Cloud platforms). Familiarity with security frameworks and compliance standards such as NIST, GDPR, PCI-DSS, DESC ISR. Strong problem-solving skills, with the ability to think creatively to solve complex security challenges. BENEFITS: Competitive Salary: Base salary commensurate with experience, plus performance-based incentives. Career Progression: Clear pathways for career development and progression within the company. Training & Development: Ongoing training and development opportunities to help you grow in your role. Supportive Culture: Join a collaborative, friendly, and ambitious team that values work-life Apply for this job Full Name Email Phone Single Line Text File Upload Click or drag a file to this area to upload. WhatsApp chat Goaco: Providing a WhatsApp contact option for clients within the region.
Jul 14, 2025
Full time
Do you strive to make a difference? Goaco is looking to build a team to continue solving problems using software and technology for our clients. We are developers at heart - and by the mind too. We thrive on challenges and live for logical thinking. Formed over a decade ago, we have built on our successes, all of whom have benefitted from their level-headed software solutions. The team is all like-minded individuals, with a drive to succeed in their own fields. ROLE OBJECTIVE We are seeking a highly skilled Penetration Tester with a strong background in penetration testing and network security. This role is ideal for a cybersecurity professional with experience in identifying, assessing, and mitigating security risks across various platforms. The consultant will play a critical role in evaluating and strengthening our clients' cybersecurity postures by conducting in-depth security assessments, vulnerability analysis, and developing comprehensive security strategies. RESPONSIBILITIES Conduct comprehensive penetration tests, vulnerability assessments, and security audits to identify risks and ensure compliance with industry best practices. Provide expert recommendations and solutions to mitigate identified vulnerabilities, enhancing client systems' security postures. Investigate alerts and suspicious activity to determine if an incident has occurred. Contain affected systems and networks to prevent the incident from spreading. Implement temporary measures to mitigate the impact of the incident. Work with other teams, such as IT and security operations, to develop and implement a containment strategy. Analyse incident data to determine the root cause of the incident and identify recommendations for improvement. Document and report incidents to the incident response team and other relevant stakeholders. Develop and implement security plans, policies, and training to prepare the organization to respond efficiently and effectively to cyber threats. Travel to various client locations when required (potential international travel) and deliver high quality solutions (e.g. OT testing or other IT services). Collaborate with client teams to develop, document, and implement security policies, standards, and guidelines aligned with industry standards (e.g., ISO 27001, NIST). Assist in the deployment, configuration, and management of security infrastructure and technologies, including firewalls, intrusion detection/prevention systems, and secure network architectures. Provide guidance and support on Azure security practices, leveraging expertise in Microsoft Azure security frameworks and best practices. Stay updated with the latest cybersecurity threats, trends, and regulatory changes, proactively advising clients on necessary adjustments to their security strategies. Produce detailed and accurate reports on penetration testing findings, including risk levels, remediation steps, and strategic recommendations. EXPERIENCE: Minimum of 4+ years of experience in cybersecurity, specifically in penetration testing and Incident Response, vulnerability management, and risk assessment. Public Sector experience, ideally MOD, MOJ, Must be SC clearable. Proven hands-on experience with tools such as Metasploit, Burp Suite, Nessus, and Wireshark. Strong understanding of network protocols, firewall configurations, and secure network design. Proficiency in scripting languages (e.g., Python, Bash, PowerShell) to automate tasks and streamline processes. Hands-on experience of vulnerability assessments, Incident response, penetration testing, threat hunting and compromise assessment. Experience collaborating with Sales teams as a pre-sale's cyber security consultant. Experience working in Energy or Construction industry projects is a plus. Experience in writing technical proposals along with other teams to deliver robust statement of works for client sign off. CERTIFICATIONS: CCNP/CCNA is nice to have. CREST/OSCP is nice to have. Microsoft and/or other cloud providers. ISO 27001 Lead auditor is a nice to have. SKILLS: Working knowledge of cloud security architecture, specifically within Azure (or other Cloud platforms). Familiarity with security frameworks and compliance standards such as NIST, GDPR, PCI-DSS, DESC ISR. Strong problem-solving skills, with the ability to think creatively to solve complex security challenges. BENEFITS: Competitive Salary: Base salary commensurate with experience, plus performance-based incentives. Career Progression: Clear pathways for career development and progression within the company. Training & Development: Ongoing training and development opportunities to help you grow in your role. Supportive Culture: Join a collaborative, friendly, and ambitious team that values work-life Apply for this job Full Name Email Phone Single Line Text File Upload Click or drag a file to this area to upload. WhatsApp chat Goaco: Providing a WhatsApp contact option for clients within the region.
Description Our global Fintech client are looking for a Penetration Tester. Responsibilities As a Penetration Tester you will be working with cyber security professionals to protect our clients customers, assets and systems. Scoping and performing mobile, web application, cloud, and infrastructure penetration tests. Automation of security testing, and development of internal tooling, to achieve continuous assurance. Key Skills AWS / GCP Penetration testing 5+ years technical information security experience. Please note this role is hybird working environment and will require someone on site in London 2/3 days a week. Job Title: Penetration Tester Location: London, UK Rate/Salary: (phone number removed) - (phone number removed) GBP Yearly Job Type: Permanent Trading as TEKsystems. Allegis Group Limited, Maxis 2, Western Road, Bracknell, RG12 1RT, United Kingdom. No. (phone number removed). Allegis Group Limited operates as an Employment Business and Employment Agency as set out in the Conduct of Employment Agencies and Employment Businesses Regulations 2003. TEKsystems is a company within the Allegis Group network of companies (collectively referred to as "Allegis Group"). Aerotek, Aston Carter, EASi, Talentis Solutions, TEKsystems, Stamford Consultants and The Stamford Group are Allegis Group brands. If you apply, your personal data will be processed as described in the Allegis Group Online Privacy Notice available at (url removed)> To access our Online Privacy Notice, which explains what information we may collect, use, share, and store about you, and describes your rights and choices about this, please go to (url removed)> We are part of a global network of companies and as a result, the personal data you provide will be shared within Allegis Group and transferred and processed outside the UK, Switzerland and European Economic Area subject to the protections described in the Allegis Group Online Privacy Notice. We store personal data in the UK, EEA, Switzerland and the USA. If you would like to exercise your privacy rights, please visit the "Contacting Us" section of our Online Privacy Notice at (url removed)/en-gb/privacy-notices for details on how to contact us. To protect your privacy and security, we may take steps to verify your identity, such as a password and user ID if there is an account associated with your request, or identifying information such as your address or date of birth, before proceeding with your request. If you are resident in the UK, EEA or Switzerland, we will process any access request you make in accordance with our commitments under the UK Data Protection Act, EU-U.S. Privacy Shield or the Swiss-U.S. Privacy Shield.
Mar 09, 2025
Full time
Description Our global Fintech client are looking for a Penetration Tester. Responsibilities As a Penetration Tester you will be working with cyber security professionals to protect our clients customers, assets and systems. Scoping and performing mobile, web application, cloud, and infrastructure penetration tests. Automation of security testing, and development of internal tooling, to achieve continuous assurance. Key Skills AWS / GCP Penetration testing 5+ years technical information security experience. Please note this role is hybird working environment and will require someone on site in London 2/3 days a week. Job Title: Penetration Tester Location: London, UK Rate/Salary: (phone number removed) - (phone number removed) GBP Yearly Job Type: Permanent Trading as TEKsystems. Allegis Group Limited, Maxis 2, Western Road, Bracknell, RG12 1RT, United Kingdom. No. (phone number removed). Allegis Group Limited operates as an Employment Business and Employment Agency as set out in the Conduct of Employment Agencies and Employment Businesses Regulations 2003. TEKsystems is a company within the Allegis Group network of companies (collectively referred to as "Allegis Group"). Aerotek, Aston Carter, EASi, Talentis Solutions, TEKsystems, Stamford Consultants and The Stamford Group are Allegis Group brands. If you apply, your personal data will be processed as described in the Allegis Group Online Privacy Notice available at (url removed)> To access our Online Privacy Notice, which explains what information we may collect, use, share, and store about you, and describes your rights and choices about this, please go to (url removed)> We are part of a global network of companies and as a result, the personal data you provide will be shared within Allegis Group and transferred and processed outside the UK, Switzerland and European Economic Area subject to the protections described in the Allegis Group Online Privacy Notice. We store personal data in the UK, EEA, Switzerland and the USA. If you would like to exercise your privacy rights, please visit the "Contacting Us" section of our Online Privacy Notice at (url removed)/en-gb/privacy-notices for details on how to contact us. To protect your privacy and security, we may take steps to verify your identity, such as a password and user ID if there is an account associated with your request, or identifying information such as your address or date of birth, before proceeding with your request. If you are resident in the UK, EEA or Switzerland, we will process any access request you make in accordance with our commitments under the UK Data Protection Act, EU-U.S. Privacy Shield or the Swiss-U.S. Privacy Shield.
Job Title: Penetration Tester (Multiple Openings) Location: Bristol, UK (with frequent travel to client sites) Type: Permanent Salary: £55k - £80k We are seeking multiple Penetration Testers to join a leading technology company based in Bristol, UK. The company specialises in cybersecurity consultancy, software development, and bespoke research & development, operating across industries such as telecommunications, finance, defence, rail, and aerospace. Our team plays a key role in safeguarding critical infrastructure and supporting global organisations. As a Penetration Tester, you will be instrumental in evaluating and strengthening our clients' security frameworks. Your role will involve conducting advanced penetration testing, vulnerability assessments, and red teaming exercises to identify and mitigate security risks. Additionally, you will contribute to project management and client engagement. Key Responsibilities: Plan and execute penetration tests on networks, systems, and applications to identify security vulnerabilities. Perform in-depth vulnerability assessments, security audits, and risk analysis, providing clients with detailed reports and actionable recommendations. Collaborate with the red team to simulate real-world cyber threats and evaluate the effectiveness of security measures. Develop and utilise exploit tools to demonstrate potential vulnerabilities and assist clients in understanding associated risks. Required Skills & Qualifications: Bachelor's or master's degree in computer science, Cybersecurity, Information Security, or a related discipline. Relevant certifications: CHECK Team Member, CREST Registered Tester, or equivalent. Minimum of 2 years' experience in penetration testing and vulnerability assessment. Strong understanding of network protocols, operating systems, and security technologies. Proficiency in penetration testing tools such as Metasploit, Burp Suite, Nmap, and others. Preferred Experience: Architecture and end-to-end security reviews. TCP/IP networking (firewalls, routing, etc.). Coding/scripting (Python, Bash, C#, etc.). Internet security. Cryptography and password cracking. Additional Beneficial Skills: Code review. Audit experience (ISO27001, CTAS, CAS(T . Mentorship and leadership capabilities within a technical team. Benefits: Competitive salary with performance-based incentives. Professional development and certification opportunities. A dynamic and collaborative work environment. If you are an experienced Penetration Tester seeking to advance your career, apply today! JBRP1_UKTJ
Feb 21, 2025
Full time
Job Title: Penetration Tester (Multiple Openings) Location: Bristol, UK (with frequent travel to client sites) Type: Permanent Salary: £55k - £80k We are seeking multiple Penetration Testers to join a leading technology company based in Bristol, UK. The company specialises in cybersecurity consultancy, software development, and bespoke research & development, operating across industries such as telecommunications, finance, defence, rail, and aerospace. Our team plays a key role in safeguarding critical infrastructure and supporting global organisations. As a Penetration Tester, you will be instrumental in evaluating and strengthening our clients' security frameworks. Your role will involve conducting advanced penetration testing, vulnerability assessments, and red teaming exercises to identify and mitigate security risks. Additionally, you will contribute to project management and client engagement. Key Responsibilities: Plan and execute penetration tests on networks, systems, and applications to identify security vulnerabilities. Perform in-depth vulnerability assessments, security audits, and risk analysis, providing clients with detailed reports and actionable recommendations. Collaborate with the red team to simulate real-world cyber threats and evaluate the effectiveness of security measures. Develop and utilise exploit tools to demonstrate potential vulnerabilities and assist clients in understanding associated risks. Required Skills & Qualifications: Bachelor's or master's degree in computer science, Cybersecurity, Information Security, or a related discipline. Relevant certifications: CHECK Team Member, CREST Registered Tester, or equivalent. Minimum of 2 years' experience in penetration testing and vulnerability assessment. Strong understanding of network protocols, operating systems, and security technologies. Proficiency in penetration testing tools such as Metasploit, Burp Suite, Nmap, and others. Preferred Experience: Architecture and end-to-end security reviews. TCP/IP networking (firewalls, routing, etc.). Coding/scripting (Python, Bash, C#, etc.). Internet security. Cryptography and password cracking. Additional Beneficial Skills: Code review. Audit experience (ISO27001, CTAS, CAS(T . Mentorship and leadership capabilities within a technical team. Benefits: Competitive salary with performance-based incentives. Professional development and certification opportunities. A dynamic and collaborative work environment. If you are an experienced Penetration Tester seeking to advance your career, apply today! JBRP1_UKTJ
Overview As a Penetration Tester Team Lead, you will be responsible for the day-to-day management of a small team of Penetration Testers, including coaching, guiding, and mentoring. In addition to this, you will perform formal and comprehensive penetration testing assessments, including producing full written reports to appropriate standards and within agreed deadlines. Furthermore, you will support recruitment, quality assurance of reports, and client pre-engagement activities such as scoping and proposal drafting. Additional management time of one day a week will be assigned to help support management activities. Supervisory Responsibilities The Penetration Tester Team Lead will be responsible for the day-to-day management of a team of Penetration Testers, including coaching, guiding, and mentoring. Responsibilities Manage, coach, guide, and mentor a team of Penetration Testers; Complete performance reviews, including 1-2-1s, and support with appropriate follow-up actions; Work with the Penetration Testing Managers to support continuous improvement, efficiency, and effectiveness of the team; Support the Service Delivery team in assigning penetration testing projects; Assist the Marketing team with content development (including blogs, social media posts, and articles) to raise the profile of Bulletproof's Penetration Testing services; Support the Sales & Pre-sales teams with client pre-engagement interactions, including scoping call activities and proposal drafting; Assist in the recruitment pipeline, reviewing candidate submissions, CTF results, and conducting interviews; Manage the QA process to ensure high-quality client reports are delivered in accordance with applicable Service Level Agreements (SLA); Perform formal and comprehensive application, infrastructure, and other penetration testing assessments as required; Conduct vulnerability assessments and provide findings with remediation actions; Deliver well-written, concise, technical and non-technical reports in English; Manage and deliver penetration testing project activities within deadlines; Perform any other appropriate job duties in line with the associated skill and experience of the post holder. Skills and Experience Required Proven industry experience in penetration testing; Previous management or mentoring experience is advantageous but not essential as full support will be provided; Strong understanding of multiple penetration testing fields & frameworks, including OWASP, PTES, and other methodologies; Experience testing web and mobile applications (iOS/Android); Experience reviewing infrastructure and associated technologies (such as AD & network controls/devices); Experience reviewing cloud platforms; Experience preparing and launching social engineering campaigns; Knowledge of how modern solutions are designed, developed, and deployed across different platforms; Ability to program or script in your preferred language; Relevant security qualifications (such as OSCP, OSCE, CREST CRT, CREST CCT); Good knowledge and understanding of network and OS principles; Good knowledge of various operating systems; Good knowledge of virtualization. Personal Attributes Excellent spoken and written English communication skills with strong attention to detail and accuracy; A passion for security and networks; Analytical and problem-solving skills with a can-do attitude and the ability to think laterally and creatively; Self-motivated with a commitment to continued development; Ability to work independently and as part of a team; Influencing and negotiation skills with the ability to build relationships at all levels; Willingness to learn. Benefits 25 days annual holiday; An additional day's annual holiday for your birthday; Company Pension contribution; Subsidized gym membership; Perkbox employee benefits platform; Frequent team events; Private Healthcare (individual cover only); Learning Allowance Benefit - a reimbursable benefit of £100 per annum for personal career development; Flexible working policy. Company Overview Bulletproof is a trusted provider of innovative cyber security and people-powered solutions. Our cyber security services are the best way to stay ahead of hackers, take control of infrastructure, and protect business-critical data. We provide a full spectrum of cyber security services including CREST-certified penetration testing, 24/7 threat monitoring, compliance support, and security training to help organizations protect against today's evolving threat landscape. Please note that as part of the recruitment process, a criminal records check will be carried out by an authorized third party.
Feb 20, 2025
Full time
Overview As a Penetration Tester Team Lead, you will be responsible for the day-to-day management of a small team of Penetration Testers, including coaching, guiding, and mentoring. In addition to this, you will perform formal and comprehensive penetration testing assessments, including producing full written reports to appropriate standards and within agreed deadlines. Furthermore, you will support recruitment, quality assurance of reports, and client pre-engagement activities such as scoping and proposal drafting. Additional management time of one day a week will be assigned to help support management activities. Supervisory Responsibilities The Penetration Tester Team Lead will be responsible for the day-to-day management of a team of Penetration Testers, including coaching, guiding, and mentoring. Responsibilities Manage, coach, guide, and mentor a team of Penetration Testers; Complete performance reviews, including 1-2-1s, and support with appropriate follow-up actions; Work with the Penetration Testing Managers to support continuous improvement, efficiency, and effectiveness of the team; Support the Service Delivery team in assigning penetration testing projects; Assist the Marketing team with content development (including blogs, social media posts, and articles) to raise the profile of Bulletproof's Penetration Testing services; Support the Sales & Pre-sales teams with client pre-engagement interactions, including scoping call activities and proposal drafting; Assist in the recruitment pipeline, reviewing candidate submissions, CTF results, and conducting interviews; Manage the QA process to ensure high-quality client reports are delivered in accordance with applicable Service Level Agreements (SLA); Perform formal and comprehensive application, infrastructure, and other penetration testing assessments as required; Conduct vulnerability assessments and provide findings with remediation actions; Deliver well-written, concise, technical and non-technical reports in English; Manage and deliver penetration testing project activities within deadlines; Perform any other appropriate job duties in line with the associated skill and experience of the post holder. Skills and Experience Required Proven industry experience in penetration testing; Previous management or mentoring experience is advantageous but not essential as full support will be provided; Strong understanding of multiple penetration testing fields & frameworks, including OWASP, PTES, and other methodologies; Experience testing web and mobile applications (iOS/Android); Experience reviewing infrastructure and associated technologies (such as AD & network controls/devices); Experience reviewing cloud platforms; Experience preparing and launching social engineering campaigns; Knowledge of how modern solutions are designed, developed, and deployed across different platforms; Ability to program or script in your preferred language; Relevant security qualifications (such as OSCP, OSCE, CREST CRT, CREST CCT); Good knowledge and understanding of network and OS principles; Good knowledge of various operating systems; Good knowledge of virtualization. Personal Attributes Excellent spoken and written English communication skills with strong attention to detail and accuracy; A passion for security and networks; Analytical and problem-solving skills with a can-do attitude and the ability to think laterally and creatively; Self-motivated with a commitment to continued development; Ability to work independently and as part of a team; Influencing and negotiation skills with the ability to build relationships at all levels; Willingness to learn. Benefits 25 days annual holiday; An additional day's annual holiday for your birthday; Company Pension contribution; Subsidized gym membership; Perkbox employee benefits platform; Frequent team events; Private Healthcare (individual cover only); Learning Allowance Benefit - a reimbursable benefit of £100 per annum for personal career development; Flexible working policy. Company Overview Bulletproof is a trusted provider of innovative cyber security and people-powered solutions. Our cyber security services are the best way to stay ahead of hackers, take control of infrastructure, and protect business-critical data. We provide a full spectrum of cyber security services including CREST-certified penetration testing, 24/7 threat monitoring, compliance support, and security training to help organizations protect against today's evolving threat landscape. Please note that as part of the recruitment process, a criminal records check will be carried out by an authorized third party.
A Scottish-based Cyber Security Consultancy are looking for a Lead Cyber Assessor (or Penetration Tester) to join their remote team as they enter a really exciting period of growth - Fully Remote working from within the UK available. They've been operating for a couple of years now and are already starting to establish themselves in their industry, they currently trade with over 160 clients worldwide in cyber consultancy and Cyber Essentials Plus assessments. They have pretty big growth plans for the next few years, so it's a really exciting time to join. You'll work alongside the Managing Director and will be given a lot of responsibility in your role, as you'll be tasked to work directly with their extensive client list to fully understand their needs from discovery to delivery. With the growth plans the organisation have, and their current set-up it's genuinely a great opportunity to really develop your skills and experience within the security world, and you'll be in an ideal position for pretty rapid career progression over the next few years. A big focus of this role involves engaging directly with organisations to carry out Cyber Essentials Plus assessments, Security Audits and Penetration Testing to assess their security foundation and identify areas of vulnerability. You'll then be tasked to provide effective recommendations based on your knowledge and experience which would improve their security posture. You'll ideally have prior experience with most of the following; Performing Cyber Essentials Plus (CE+) Assessments Penetration Testing (Burp Suite, Metasploit, Nmap, Nessus etc) Producing Reports on Security Vulnerabilities and Providing Recommendations Advising Clients on Ways to Achieve/Maintain Cyber Essentials and Cyber Essentials Plus Certifications What would really make someone stand out for this position is Cyber Essentials certifications (CSTM/CSTL, CEH, OSCP etc ) as it's such a big part of the role, they're also more than happy to help employee's progress their expertise in this area with further accreditation. This role would really suit an ambitious individual that's looking for a challenging role where they can ultimately take ownership of full projects pretty early on and drive these independently. They're able to offer fully remote working for this role, providing you're based within the UK (and planning to stay within the UK). They'll provide you with all the necessary equipment needed to help you thrive and perform at your very best, and they're keen to maintain a healthy work/life balance. In return they're able to offer asalary of £35-40k + benefits for this role, with the opportunity for career progression and security accreditations. They have pretty ambitions plans for the next few years, as this role is a key part of their strategy for growth - so they'll be lots of opportunities to grow here as well. If you're keen to find out more please apply, and feel free to reach out to Lewis Paterson at Cathcart Technology on LinkedIn or email to discuss further. JBRP1_UKTJ
Feb 20, 2025
Full time
A Scottish-based Cyber Security Consultancy are looking for a Lead Cyber Assessor (or Penetration Tester) to join their remote team as they enter a really exciting period of growth - Fully Remote working from within the UK available. They've been operating for a couple of years now and are already starting to establish themselves in their industry, they currently trade with over 160 clients worldwide in cyber consultancy and Cyber Essentials Plus assessments. They have pretty big growth plans for the next few years, so it's a really exciting time to join. You'll work alongside the Managing Director and will be given a lot of responsibility in your role, as you'll be tasked to work directly with their extensive client list to fully understand their needs from discovery to delivery. With the growth plans the organisation have, and their current set-up it's genuinely a great opportunity to really develop your skills and experience within the security world, and you'll be in an ideal position for pretty rapid career progression over the next few years. A big focus of this role involves engaging directly with organisations to carry out Cyber Essentials Plus assessments, Security Audits and Penetration Testing to assess their security foundation and identify areas of vulnerability. You'll then be tasked to provide effective recommendations based on your knowledge and experience which would improve their security posture. You'll ideally have prior experience with most of the following; Performing Cyber Essentials Plus (CE+) Assessments Penetration Testing (Burp Suite, Metasploit, Nmap, Nessus etc) Producing Reports on Security Vulnerabilities and Providing Recommendations Advising Clients on Ways to Achieve/Maintain Cyber Essentials and Cyber Essentials Plus Certifications What would really make someone stand out for this position is Cyber Essentials certifications (CSTM/CSTL, CEH, OSCP etc ) as it's such a big part of the role, they're also more than happy to help employee's progress their expertise in this area with further accreditation. This role would really suit an ambitious individual that's looking for a challenging role where they can ultimately take ownership of full projects pretty early on and drive these independently. They're able to offer fully remote working for this role, providing you're based within the UK (and planning to stay within the UK). They'll provide you with all the necessary equipment needed to help you thrive and perform at your very best, and they're keen to maintain a healthy work/life balance. In return they're able to offer asalary of £35-40k + benefits for this role, with the opportunity for career progression and security accreditations. They have pretty ambitions plans for the next few years, as this role is a key part of their strategy for growth - so they'll be lots of opportunities to grow here as well. If you're keen to find out more please apply, and feel free to reach out to Lewis Paterson at Cathcart Technology on LinkedIn or email to discuss further. JBRP1_UKTJ
Job Title: Penetration Tester (Multiple Openings) Location: Bristol, UK (with frequent travel to client sites) Type: Permanent Salary: £55k - £80k We are seeking multiple Penetration Testers to join a leading technology company based in Bristol, UK. The company specialises in cybersecurity consultancy, software development, and bespoke research & development, operating across industries such as telecommunications, finance, defence, rail, and aerospace. Our team plays a key role in safeguarding critical infrastructure and supporting global organisations. As a Penetration Tester, you will be instrumental in evaluating and strengthening our clients' security frameworks. Your role will involve conducting advanced penetration testing, vulnerability assessments, and red teaming exercises to identify and mitigate security risks. Additionally, you will contribute to project management and client engagement. Key Responsibilities: Plan and execute penetration tests on networks, systems, and applications to identify security vulnerabilities. Perform in-depth vulnerability assessments, security audits, and risk analysis, providing clients with detailed reports and actionable recommendations. Collaborate with the red team to simulate real-world cyber threats and evaluate the effectiveness of security measures. Develop and utilise exploit tools to demonstrate potential vulnerabilities and assist clients in understanding associated risks. Required Skills & Qualifications: Bachelor's or master's degree in computer science, Cybersecurity, Information Security, or a related discipline. Relevant certifications: CHECK Team Member, Crest Registered Tester, or equivalent. Minimum of 2 years' experience in penetration testing and vulnerability assessment. Strong understanding of network protocols, operating systems, and security technologies. Proficiency in penetration testing tools such as Metasploit, Burp Suite, Nmap, and others. Preferred Experience: Architecture and end-to-end security reviews. TCP/IP Networking (Firewalls, routing, etc.). Coding/Scripting (Python, Bash, C#, etc.). Internet security. Cryptography and password cracking. Additional Beneficial Skills: Code review. Audit experience (ISO27001, CTAS, CAS(T). Mentorship and leadership capabilities within a technical team. Benefits: Competitive salary with performance-based incentives. Professional development and certification opportunities. A dynamic and collaborative work environment. If you are an experienced Penetration Tester seeking to advance your career, apply today!
Feb 20, 2025
Full time
Job Title: Penetration Tester (Multiple Openings) Location: Bristol, UK (with frequent travel to client sites) Type: Permanent Salary: £55k - £80k We are seeking multiple Penetration Testers to join a leading technology company based in Bristol, UK. The company specialises in cybersecurity consultancy, software development, and bespoke research & development, operating across industries such as telecommunications, finance, defence, rail, and aerospace. Our team plays a key role in safeguarding critical infrastructure and supporting global organisations. As a Penetration Tester, you will be instrumental in evaluating and strengthening our clients' security frameworks. Your role will involve conducting advanced penetration testing, vulnerability assessments, and red teaming exercises to identify and mitigate security risks. Additionally, you will contribute to project management and client engagement. Key Responsibilities: Plan and execute penetration tests on networks, systems, and applications to identify security vulnerabilities. Perform in-depth vulnerability assessments, security audits, and risk analysis, providing clients with detailed reports and actionable recommendations. Collaborate with the red team to simulate real-world cyber threats and evaluate the effectiveness of security measures. Develop and utilise exploit tools to demonstrate potential vulnerabilities and assist clients in understanding associated risks. Required Skills & Qualifications: Bachelor's or master's degree in computer science, Cybersecurity, Information Security, or a related discipline. Relevant certifications: CHECK Team Member, Crest Registered Tester, or equivalent. Minimum of 2 years' experience in penetration testing and vulnerability assessment. Strong understanding of network protocols, operating systems, and security technologies. Proficiency in penetration testing tools such as Metasploit, Burp Suite, Nmap, and others. Preferred Experience: Architecture and end-to-end security reviews. TCP/IP Networking (Firewalls, routing, etc.). Coding/Scripting (Python, Bash, C#, etc.). Internet security. Cryptography and password cracking. Additional Beneficial Skills: Code review. Audit experience (ISO27001, CTAS, CAS(T). Mentorship and leadership capabilities within a technical team. Benefits: Competitive salary with performance-based incentives. Professional development and certification opportunities. A dynamic and collaborative work environment. If you are an experienced Penetration Tester seeking to advance your career, apply today!
In a world of disruption and increasingly complex business challenges, our professionals bring truth into focus with the Kroll Lens. Our sharp analytical skills, paired with the latest technology, allow us to give our clients clarity-not just answers-in all areas of business. We embrace diverse backgrounds and global perspectives, and we cultivate diversity by respecting, including, and valuing one another. As part of One team, One Kroll, you'll contribute to a supportive and collaborative work environment that empowers you to excel. Our Offensive Security professionals are on a mission to make the world a safer place, one company at a time. We believe that our work to help our clients discover and remediate their unique security risks makes every one of us safer. Our clients trust us to use cutting-edge offensive security tools, creativity, imagination, and expert knowledge to find cybersecurity risks in their networks, systems, and software. We're looking to grow our team of penetration testers in the UK. We test web and mobile applications, computer networks, cloud infrastructure, hardware devices, security awareness through social engineering, organizations through red and purple team exercises, and more. At Kroll, your work will help deliver clarity to our clients' most complex governance, risk, and transparency challenges. Apply now to join One team, One Kroll. What you'll do As an Offensive Security Consultant, you'll be reporting to a Vice President in our Offensive Security team and deliver projects for our clients, large and small, across Europe and North America. You will perform various web application, API, mobile, and infrastructure penetration tests. You will also draft reports based on the assessment results and gathered evidence and help address client inquiries regarding these results. In addition to the execution of traditional security assessments, you will participate in their refinement and improvement. In summary, you will: Execute offensive security and consultative engagements for our clients by testing their applications and infrastructure Author deliverables, such as technical and executive reports Engage with our clients to understand their requirements, update them on project status, answer their queries, and present your findings and recommendations Keep your skills and knowledge up to date with the latest trends in cybersecurity and emerging technology What you'll need to succeed Bachelor's degree or college diploma in cybersecurity, computer science or engineering, software engineering, or IT/System/Network administration 2+ years in cybersecurity, with at least 1 year in penetration testing, cloud security, or red teaming A strong understanding of offensive security methodology and vulnerability frameworks such as the OWASP Testing Guide, TIBER EU, MITRE ATT&CK, PTES, or others An ability to analyze root causes and deliver technological recommendations to our clients Excellent oral and written communication skills Experience working both as part of a global team and independently CREST CPSA, CREST CRT, OSCP, or OSWE certifications are an asset Kroll is committed to creating an inclusive work environment. We are proud to be an equal opportunity employer and will consider all qualified applicants regardless of gender, gender identity, race, religion, color, nationality, ethnic origin, sexual orientation, marital status, veteran status, age or disability. Kroll is headquartered in New York with offices around the world.
Feb 18, 2025
Full time
In a world of disruption and increasingly complex business challenges, our professionals bring truth into focus with the Kroll Lens. Our sharp analytical skills, paired with the latest technology, allow us to give our clients clarity-not just answers-in all areas of business. We embrace diverse backgrounds and global perspectives, and we cultivate diversity by respecting, including, and valuing one another. As part of One team, One Kroll, you'll contribute to a supportive and collaborative work environment that empowers you to excel. Our Offensive Security professionals are on a mission to make the world a safer place, one company at a time. We believe that our work to help our clients discover and remediate their unique security risks makes every one of us safer. Our clients trust us to use cutting-edge offensive security tools, creativity, imagination, and expert knowledge to find cybersecurity risks in their networks, systems, and software. We're looking to grow our team of penetration testers in the UK. We test web and mobile applications, computer networks, cloud infrastructure, hardware devices, security awareness through social engineering, organizations through red and purple team exercises, and more. At Kroll, your work will help deliver clarity to our clients' most complex governance, risk, and transparency challenges. Apply now to join One team, One Kroll. What you'll do As an Offensive Security Consultant, you'll be reporting to a Vice President in our Offensive Security team and deliver projects for our clients, large and small, across Europe and North America. You will perform various web application, API, mobile, and infrastructure penetration tests. You will also draft reports based on the assessment results and gathered evidence and help address client inquiries regarding these results. In addition to the execution of traditional security assessments, you will participate in their refinement and improvement. In summary, you will: Execute offensive security and consultative engagements for our clients by testing their applications and infrastructure Author deliverables, such as technical and executive reports Engage with our clients to understand their requirements, update them on project status, answer their queries, and present your findings and recommendations Keep your skills and knowledge up to date with the latest trends in cybersecurity and emerging technology What you'll need to succeed Bachelor's degree or college diploma in cybersecurity, computer science or engineering, software engineering, or IT/System/Network administration 2+ years in cybersecurity, with at least 1 year in penetration testing, cloud security, or red teaming A strong understanding of offensive security methodology and vulnerability frameworks such as the OWASP Testing Guide, TIBER EU, MITRE ATT&CK, PTES, or others An ability to analyze root causes and deliver technological recommendations to our clients Excellent oral and written communication skills Experience working both as part of a global team and independently CREST CPSA, CREST CRT, OSCP, or OSWE certifications are an asset Kroll is committed to creating an inclusive work environment. We are proud to be an equal opportunity employer and will consider all qualified applicants regardless of gender, gender identity, race, religion, color, nationality, ethnic origin, sexual orientation, marital status, veteran status, age or disability. Kroll is headquartered in New York with offices around the world.
Role: Penetration Tester Location: London Salary: 55,000 Are you passionate about cybersecurity and eager to put your skills to the test? We're looking for a Penetration Tester to join our growing team and help identify vulnerabilities before malicious actors can exploit them working for a leading managed security service provider. About the Role: As a Penetration Tester, you'll simulate real-world cyber-attacks to assess the security of our clients' systems, networks, and applications. Your goal will be to uncover weaknesses and provide actionable recommendations for enhancing security. What You'll Do: Conduct penetration testing on a variety of systems (web applications, networks, and mobile apps). Identify and exploit vulnerabilities to assess the security posture of our clients. Collaborate with security teams to patch vulnerabilities and strengthen defenses. Prepare detailed reports outlining findings and provide remediation steps. Stay up-to-date with the latest cybersecurity threats and industry best practices. Who You Are: Proficient in penetration testing methodologies and tools (e.g., Kali Linux, Burp Suite, Metasploit). Strong understanding of common vulnerabilities (OWASP Top 10, CVE databases). Hands-on experience with web application and network security testing. Strong problem-solving skills and the ability to think like an attacker. Excellent communication skills to present findings clearly to technical and non-technical teams. Certifications like OSCP, CEH, or similar are a plus. Why Join Us: Competitive salary and benefits. Opportunity to work with cutting-edge cybersecurity technologies. Collaborative, inclusive work environment with career growth opportunities. Impactful work protecting organizations from cyber threats. If you're ready to help safeguard the digital world, we want to hear from you. Apply today and be part of our mission to create safer online environments for all! In Technology Group Ltd is acting as an Employment Agency in relation to this vacancy.
Feb 15, 2025
Full time
Role: Penetration Tester Location: London Salary: 55,000 Are you passionate about cybersecurity and eager to put your skills to the test? We're looking for a Penetration Tester to join our growing team and help identify vulnerabilities before malicious actors can exploit them working for a leading managed security service provider. About the Role: As a Penetration Tester, you'll simulate real-world cyber-attacks to assess the security of our clients' systems, networks, and applications. Your goal will be to uncover weaknesses and provide actionable recommendations for enhancing security. What You'll Do: Conduct penetration testing on a variety of systems (web applications, networks, and mobile apps). Identify and exploit vulnerabilities to assess the security posture of our clients. Collaborate with security teams to patch vulnerabilities and strengthen defenses. Prepare detailed reports outlining findings and provide remediation steps. Stay up-to-date with the latest cybersecurity threats and industry best practices. Who You Are: Proficient in penetration testing methodologies and tools (e.g., Kali Linux, Burp Suite, Metasploit). Strong understanding of common vulnerabilities (OWASP Top 10, CVE databases). Hands-on experience with web application and network security testing. Strong problem-solving skills and the ability to think like an attacker. Excellent communication skills to present findings clearly to technical and non-technical teams. Certifications like OSCP, CEH, or similar are a plus. Why Join Us: Competitive salary and benefits. Opportunity to work with cutting-edge cybersecurity technologies. Collaborative, inclusive work environment with career growth opportunities. Impactful work protecting organizations from cyber threats. If you're ready to help safeguard the digital world, we want to hear from you. Apply today and be part of our mission to create safer online environments for all! In Technology Group Ltd is acting as an Employment Agency in relation to this vacancy.
Tob Title: Penetration Tester - CRT or CSTM cert required Salary: £40,000 - £55,000 (Depending on Experience) Location: Primarily remote, with occasional onsite requirements Eligibility for SC Clearance: Non-negotiable Sponsorship: Not available About the Role: We are seeking a talented and certified Penetration Tester to join our client in the Computer and Network Security industry. As a key member, you will be responsible for identifying vulnerabilities in systems, networks, and applications through penetration testing. This role is mainly remote, with occasional onsite requirements for certain projects and collaborations. Essential Qualifications & Experience: CRT or CSTM certification is required. Hands-on experience with CHECK tools is a bonus but not mandatory. Strong understanding of penetration testing methodologies, vulnerability scanning, and security risk analysis. Familiarity with various operating systems, networking protocols, and cybersecurity tools. Excellent problem-solving and communication skills. Ability to work independently in a remote environment and manage tasks efficiently. Key Responsibilities: Conduct penetration tests on systems, networks, and applications to identify potential security vulnerabilities. Work with development and IT teams to implement fixes for identified security flaws. Perform vulnerability assessments and risk analysis to evaluate the security posture of the organisation. Provide comprehensive reports detailing test findings and actionable recommendations for improving security. Stay up to date with the latest security threats and penetration testing techniques. Collaborate with internal teams to ensure security best practices are followed. Eligibility Requirements: Must be eligible for SC clearance (Security Check). No sponsorship available for this position. If you are interested in this opportunity, please apply now with your updated CV in Microsoft Word/PDF format. Disclaimer Notwithstanding any guidelines given to level of experience sought, we will consider candidates from outside this range if they can demonstrate the necessary competencies. Square One is acting as both an employment agency and an employment business, and is an equal opportunities recruitment business. Square One embraces diversity and will treat everyone equally. Please see our website for our full diversity statement.
Feb 14, 2025
Full time
Tob Title: Penetration Tester - CRT or CSTM cert required Salary: £40,000 - £55,000 (Depending on Experience) Location: Primarily remote, with occasional onsite requirements Eligibility for SC Clearance: Non-negotiable Sponsorship: Not available About the Role: We are seeking a talented and certified Penetration Tester to join our client in the Computer and Network Security industry. As a key member, you will be responsible for identifying vulnerabilities in systems, networks, and applications through penetration testing. This role is mainly remote, with occasional onsite requirements for certain projects and collaborations. Essential Qualifications & Experience: CRT or CSTM certification is required. Hands-on experience with CHECK tools is a bonus but not mandatory. Strong understanding of penetration testing methodologies, vulnerability scanning, and security risk analysis. Familiarity with various operating systems, networking protocols, and cybersecurity tools. Excellent problem-solving and communication skills. Ability to work independently in a remote environment and manage tasks efficiently. Key Responsibilities: Conduct penetration tests on systems, networks, and applications to identify potential security vulnerabilities. Work with development and IT teams to implement fixes for identified security flaws. Perform vulnerability assessments and risk analysis to evaluate the security posture of the organisation. Provide comprehensive reports detailing test findings and actionable recommendations for improving security. Stay up to date with the latest security threats and penetration testing techniques. Collaborate with internal teams to ensure security best practices are followed. Eligibility Requirements: Must be eligible for SC clearance (Security Check). No sponsorship available for this position. If you are interested in this opportunity, please apply now with your updated CV in Microsoft Word/PDF format. Disclaimer Notwithstanding any guidelines given to level of experience sought, we will consider candidates from outside this range if they can demonstrate the necessary competencies. Square One is acting as both an employment agency and an employment business, and is an equal opportunities recruitment business. Square One embraces diversity and will treat everyone equally. Please see our website for our full diversity statement.
Senior Penetration Tester - Contract Role in London We are seeking a highly skilled and experienced Senior Penetration Tester for an exciting contract opportunity based in the vibrant city of London. This role offers a chance to work within dynamic environments, focusing on both web and mobile applications. The position is set for 3 months duration starting mid-March with negotiable rates. Key Details: Type: Contract (3-months) Rates: Negotiable Sector: Cybersecurity Testing / Information Security Main Responsibilities Include But Are Not Limited To : - Conducting detailed penetration tests on various web-based as well as mobile platforms. - Identifying vulnerabilities, providing recommendations & producing comprehensive reports. The ideal candidate will be working under hybrid conditions allowing flexibility between home and our office located centrally in London. The IR35 status remains TBC which we aim to clarify at the earliest possibility. If you have expertise in safeguarding digital infrastructure through ethical hacking techniques this could potentially be your next engagement! Please click here to find out more about our Key Information Documents. Please note that the documents provided contain generic information. If we are successful in finding you an assignment, you will receive a Key Information Document which will be specific to the vendor set-up you have chosen and your placement. To find out more about Computer Futures please visit (url removed) Computer Futures, a trading division of SThree Partnership LLP is acting as an Employment Business in relation to this vacancy Registered office 8 Bishopsgate, London, EC2N 4BQ, United Kingdom Partnership Number OC(phone number removed) England and Wales
Feb 08, 2025
Contractor
Senior Penetration Tester - Contract Role in London We are seeking a highly skilled and experienced Senior Penetration Tester for an exciting contract opportunity based in the vibrant city of London. This role offers a chance to work within dynamic environments, focusing on both web and mobile applications. The position is set for 3 months duration starting mid-March with negotiable rates. Key Details: Type: Contract (3-months) Rates: Negotiable Sector: Cybersecurity Testing / Information Security Main Responsibilities Include But Are Not Limited To : - Conducting detailed penetration tests on various web-based as well as mobile platforms. - Identifying vulnerabilities, providing recommendations & producing comprehensive reports. The ideal candidate will be working under hybrid conditions allowing flexibility between home and our office located centrally in London. The IR35 status remains TBC which we aim to clarify at the earliest possibility. If you have expertise in safeguarding digital infrastructure through ethical hacking techniques this could potentially be your next engagement! Please click here to find out more about our Key Information Documents. Please note that the documents provided contain generic information. If we are successful in finding you an assignment, you will receive a Key Information Document which will be specific to the vendor set-up you have chosen and your placement. To find out more about Computer Futures please visit (url removed) Computer Futures, a trading division of SThree Partnership LLP is acting as an Employment Business in relation to this vacancy Registered office 8 Bishopsgate, London, EC2N 4BQ, United Kingdom Partnership Number OC(phone number removed) England and Wales
A Scottish-based Cyber Security Consultancy are looking for a Lead Cyber Assessor (or Penetration Tester) to join their remote team as they enter a really exciting period of growth - Fully Remote working from within the UK available. They've been operating for a couple of years now and are already starting to establish themselves in their industry, they currently trade with over 160 clients worldwide in cyber consultancy and Cyber Essentials Plus assessments. They have pretty big growth plans for the next few years, so it's a really exciting time to join. You'll work alongside the Managing Director and will be given a lot of responsibility in your role, as you'll be tasked to work directly with their extensive client list to fully understand their needs from discovery to delivery. With the growth plans the organisation have, and their current set-up it's genuinely a great opportunity to really develop your skills and experience within the security world, and you'll be in an ideal position for pretty rapid career progression over the next few years. A big focus of this role involves engaging directly with organisations to carry out Cyber Essentials Plus assessments, Security Audits and Penetration Testing to assess their security foundation and identify areas of vulnerability. You'll then be tasked to provide effective recommendations based on your knowledge and experience which would improve their security posture. You'll ideally have prior experience with most of the following; Performing Cyber Essentials Plus (CE+) Assessments Penetration Testing (Burp Suite, Metasploit, Nmap, Nessus etc) Producing Reports on Security Vulnerabilities and Providing Recommendations Advising Clients on Ways to Achieve/Maintain Cyber Essentials and Cyber Essentials Plus Certifications What would really make someone stand out for this position is Cyber Essentials certifications (CSTM/CSTL, CEH, OSCP etc ) as it's such a big part of the role, they're also more than happy to help employee's progress their expertise in this area with further accreditation. This role would really suit an ambitious individual that's looking for a challenging role where they can ultimately take ownership of full projects pretty early on and drive these independently. They're able to offer fully remote working for this role, providing you're based within the UK (and planning to stay within the UK). They'll provide you with all the necessary equipment needed to help you thrive and perform at your very best, and they're keen to maintain a healthy work/life balance. In return they're able to offer a salary of 35-40k + benefits for this role, with the opportunity for career progression and security accreditations. They have pretty ambitions plans for the next few years, as this role is a key part of their strategy for growth - so they'll be lots of opportunities to grow here as well. If you're keen to find out more please apply, and feel free to reach out to Lewis Paterson at Cathcart Technology on LinkedIn or email to discuss further.
Feb 06, 2025
Full time
A Scottish-based Cyber Security Consultancy are looking for a Lead Cyber Assessor (or Penetration Tester) to join their remote team as they enter a really exciting period of growth - Fully Remote working from within the UK available. They've been operating for a couple of years now and are already starting to establish themselves in their industry, they currently trade with over 160 clients worldwide in cyber consultancy and Cyber Essentials Plus assessments. They have pretty big growth plans for the next few years, so it's a really exciting time to join. You'll work alongside the Managing Director and will be given a lot of responsibility in your role, as you'll be tasked to work directly with their extensive client list to fully understand their needs from discovery to delivery. With the growth plans the organisation have, and their current set-up it's genuinely a great opportunity to really develop your skills and experience within the security world, and you'll be in an ideal position for pretty rapid career progression over the next few years. A big focus of this role involves engaging directly with organisations to carry out Cyber Essentials Plus assessments, Security Audits and Penetration Testing to assess their security foundation and identify areas of vulnerability. You'll then be tasked to provide effective recommendations based on your knowledge and experience which would improve their security posture. You'll ideally have prior experience with most of the following; Performing Cyber Essentials Plus (CE+) Assessments Penetration Testing (Burp Suite, Metasploit, Nmap, Nessus etc) Producing Reports on Security Vulnerabilities and Providing Recommendations Advising Clients on Ways to Achieve/Maintain Cyber Essentials and Cyber Essentials Plus Certifications What would really make someone stand out for this position is Cyber Essentials certifications (CSTM/CSTL, CEH, OSCP etc ) as it's such a big part of the role, they're also more than happy to help employee's progress their expertise in this area with further accreditation. This role would really suit an ambitious individual that's looking for a challenging role where they can ultimately take ownership of full projects pretty early on and drive these independently. They're able to offer fully remote working for this role, providing you're based within the UK (and planning to stay within the UK). They'll provide you with all the necessary equipment needed to help you thrive and perform at your very best, and they're keen to maintain a healthy work/life balance. In return they're able to offer a salary of 35-40k + benefits for this role, with the opportunity for career progression and security accreditations. They have pretty ambitions plans for the next few years, as this role is a key part of their strategy for growth - so they'll be lots of opportunities to grow here as well. If you're keen to find out more please apply, and feel free to reach out to Lewis Paterson at Cathcart Technology on LinkedIn or email to discuss further.
Senior Security Test Consultant - Penetration Tester - OSCP Salary: Up to £72,000 + Private Health + Excellent Pension + Benefits + Flexi/Home Working + Full Travel Expenses Note: Sorry no sponsorship is available for this role. We are proud to collaborate with a leading Security Tech Company based in London, seeking experienced Senior Security Consultants to join their dedicated Cyber Testing Team click apply for full job details
Feb 01, 2024
Full time
Senior Security Test Consultant - Penetration Tester - OSCP Salary: Up to £72,000 + Private Health + Excellent Pension + Benefits + Flexi/Home Working + Full Travel Expenses Note: Sorry no sponsorship is available for this role. We are proud to collaborate with a leading Security Tech Company based in London, seeking experienced Senior Security Consultants to join their dedicated Cyber Testing Team click apply for full job details
Pentest CHECK Team Lead required by our client, a well-established cyber-security firm looking to expand. This is for a permanent role, but some ad-hoc working may also be on offer if that would be more suited to your current lifestyle. This role can be worked from multiple locations, with client sites across the UK. Salary banding is Our client are specifically looking for CHECK Team Leads in either Web Application or Infrastructure. The salary level for the CHECK Team Lead is approximately £60k to £70k. To find out more about the company and the role, please get in touch with Dave a IT Recruitment Solutions today. CTL, CHECK Team Lead, Pentest, Pentesting, Pentester, Penetration Testing
Jan 26, 2024
Full time
Pentest CHECK Team Lead required by our client, a well-established cyber-security firm looking to expand. This is for a permanent role, but some ad-hoc working may also be on offer if that would be more suited to your current lifestyle. This role can be worked from multiple locations, with client sites across the UK. Salary banding is Our client are specifically looking for CHECK Team Leads in either Web Application or Infrastructure. The salary level for the CHECK Team Lead is approximately £60k to £70k. To find out more about the company and the role, please get in touch with Dave a IT Recruitment Solutions today. CTL, CHECK Team Lead, Pentest, Pentesting, Pentester, Penetration Testing
We are currently working with a well-established consultancy with big plans for 2024 as they're looking to hire multiple experienced CRT Certified Penetration Testers to support upcoming projects. The company is Crest accredited and you will get the opportunity to work on a wide scope of engagements and with businesses in a variety of industries. Salary: £45,000 - £60,000 per annum Location: Remote + National Client Site Travel Penetration Tester - Responsibilities: Lead/support a variety of penetration testing engagements with a focus on excellent client delivery Manage projects, workload and training effectively Producing informative, and detail reports Involved in scoping calls for testing engagements Stay updated on cybersecurity threats and industry best practices. Penetration Tester - Requirements: Must possess CRT certification 2+ years experience in a Pen Testing role is necessary Other relevant industry certifications such as OSCP, OSEP, CSTM, CTM Must possess active, or be eligible for, SC Clearance Excellent report writing abilities and a high standard of written English Enthusiasm, dedication and keen interest in professional development This is a great opportunity for an experienced Pen Tester to join an already established offensive security practice - with the chance to work on new, fresh and exciting engagements. If you want to further enhance your skill set, develop professionally and upskill in any particular area of Pen Testing - be sure to apply and reach out. Lawrence Harvey is acting as an Employment Business in regards to this position.
Jan 26, 2024
Full time
We are currently working with a well-established consultancy with big plans for 2024 as they're looking to hire multiple experienced CRT Certified Penetration Testers to support upcoming projects. The company is Crest accredited and you will get the opportunity to work on a wide scope of engagements and with businesses in a variety of industries. Salary: £45,000 - £60,000 per annum Location: Remote + National Client Site Travel Penetration Tester - Responsibilities: Lead/support a variety of penetration testing engagements with a focus on excellent client delivery Manage projects, workload and training effectively Producing informative, and detail reports Involved in scoping calls for testing engagements Stay updated on cybersecurity threats and industry best practices. Penetration Tester - Requirements: Must possess CRT certification 2+ years experience in a Pen Testing role is necessary Other relevant industry certifications such as OSCP, OSEP, CSTM, CTM Must possess active, or be eligible for, SC Clearance Excellent report writing abilities and a high standard of written English Enthusiasm, dedication and keen interest in professional development This is a great opportunity for an experienced Pen Tester to join an already established offensive security practice - with the chance to work on new, fresh and exciting engagements. If you want to further enhance your skill set, develop professionally and upskill in any particular area of Pen Testing - be sure to apply and reach out. Lawrence Harvey is acting as an Employment Business in regards to this position.
Security Architect - TOGAF - CISM - CISSP Security Architect - Remote Essential Job Duties and Responsibilities: Ensure customer security requirements and responses are developed with engineering and business development teams for customer bids Lead security response to customer variation requests and ensure customer understanding of the impact of their request against new and existing security risks. Lead the delivery of design and build/operations and maintenance budget requirements for customer bids and variation requests. Ensures financial requirements for cyber resilience controls and security labour estimates are presented in cost models presented to senior leadership. Lead assurance to ensure security requirements are developed by DevOps, system engineers and other project team staff and are implemented according to cyber resilience engineering policies and customer needs and ensure that these requirements are supportable and clearly documented. Leads all security risk assessment/business impact analysis/audit for new and existing business applications or IT infrastructure and leads advice and guidance on the application and operation of physical, procedural and technical security controls within all engineering and IT solutions. Lead information security assurance within design gateways and service transition/change boards. Champion best practices for application and infrastructure/architecture design principles for the use of existing and new information security technologies across customer systems. Assure appropriate security support processes are delivered by projects to support service transition. Some manual handling may occasionally be required May be required to work on other sites and datacentres Comply with values and adherence to all company policy and procedures. In particular, comply with the code of conduct, quality, security and occupational health, safety and environmental policies and procedures. In addition to the duties and responsibilities listed, the job holder is required to perform other duties assigned by their manager from time-to-time, as may be reasonably required of them. Minimum Job Requirements: Qualifications Essential: Degree or equivalent qualifications/experience Certification as an Information Security professional (eg IISP/CISA/CISM/CISSP/CCSP/ISA) Current driving licence Desirable: A university degree in a numerate subject (eg computer science, maths, engineering, natural science) Information privacy/data protection - CIPPE/+ CIPM HMG IA qualifications/CLAS; Crest-registered penetration tester and/or security architect ITIL v3/Prince2 foundation level/TOGAF Security and IT infrastructure/networking vendors' certifications Skills/Experience/Knowledge Essential: Solid exposure of taking a leading role in the establishment and implementation of security architecture, policies and procedures. Experience of secure development life cycles (SDLC) Good understanding of enterprise-scale security management process and infrastructure Exposure to current IT Security standards and regulations such as PCI-DSS, ISO 27001, SOX, DPA Exposure to enterprise IT infrastructure and tools (eg MS Windows Server, Cisco, Oracle Solaris, Linux) Superior network infrastructure and protocol knowledge Desirable: Experience of transactional revenue, Embedded, Smartcards and mobile payment systems Knowledge/experience of security architecture of major public cloud services eg Microsoft Azure, Amazon Web Services, Google Cloud, Cloud Access Service Brokers eg Okta Knowledge of cryptographic services Knowledge of wider security, audit, risk and compliance standards eg PCI-P2PE, PCI-POI-PTS, ISO 27701, ISO27005, ISO31000, NIST, GDPR and governance/risk/compliance tools Requirements analysis and tracing tools such as DOORS and SD Elements; OneTrust privacy tool Understanding of security within DevOps and waterfall project methods, product development Experience of application security testing tools and devops frameworks, eg SonarQube, JIRA, static & dynamic code analysis/fuzzing Development tools/environments; Java, Visual Studio, C# In depth understanding of information security control tools, eg Splunk, Crowdstrike, Trend Micro DeepSecurity, Imperva WAF, Tenable.IO/Nessus, TripWire, Cisco IPS, F5, Centrify Experience of quality management systems and external audit standards eg ISO 9001, ISAE3402
Dec 17, 2022
Full time
Security Architect - TOGAF - CISM - CISSP Security Architect - Remote Essential Job Duties and Responsibilities: Ensure customer security requirements and responses are developed with engineering and business development teams for customer bids Lead security response to customer variation requests and ensure customer understanding of the impact of their request against new and existing security risks. Lead the delivery of design and build/operations and maintenance budget requirements for customer bids and variation requests. Ensures financial requirements for cyber resilience controls and security labour estimates are presented in cost models presented to senior leadership. Lead assurance to ensure security requirements are developed by DevOps, system engineers and other project team staff and are implemented according to cyber resilience engineering policies and customer needs and ensure that these requirements are supportable and clearly documented. Leads all security risk assessment/business impact analysis/audit for new and existing business applications or IT infrastructure and leads advice and guidance on the application and operation of physical, procedural and technical security controls within all engineering and IT solutions. Lead information security assurance within design gateways and service transition/change boards. Champion best practices for application and infrastructure/architecture design principles for the use of existing and new information security technologies across customer systems. Assure appropriate security support processes are delivered by projects to support service transition. Some manual handling may occasionally be required May be required to work on other sites and datacentres Comply with values and adherence to all company policy and procedures. In particular, comply with the code of conduct, quality, security and occupational health, safety and environmental policies and procedures. In addition to the duties and responsibilities listed, the job holder is required to perform other duties assigned by their manager from time-to-time, as may be reasonably required of them. Minimum Job Requirements: Qualifications Essential: Degree or equivalent qualifications/experience Certification as an Information Security professional (eg IISP/CISA/CISM/CISSP/CCSP/ISA) Current driving licence Desirable: A university degree in a numerate subject (eg computer science, maths, engineering, natural science) Information privacy/data protection - CIPPE/+ CIPM HMG IA qualifications/CLAS; Crest-registered penetration tester and/or security architect ITIL v3/Prince2 foundation level/TOGAF Security and IT infrastructure/networking vendors' certifications Skills/Experience/Knowledge Essential: Solid exposure of taking a leading role in the establishment and implementation of security architecture, policies and procedures. Experience of secure development life cycles (SDLC) Good understanding of enterprise-scale security management process and infrastructure Exposure to current IT Security standards and regulations such as PCI-DSS, ISO 27001, SOX, DPA Exposure to enterprise IT infrastructure and tools (eg MS Windows Server, Cisco, Oracle Solaris, Linux) Superior network infrastructure and protocol knowledge Desirable: Experience of transactional revenue, Embedded, Smartcards and mobile payment systems Knowledge/experience of security architecture of major public cloud services eg Microsoft Azure, Amazon Web Services, Google Cloud, Cloud Access Service Brokers eg Okta Knowledge of cryptographic services Knowledge of wider security, audit, risk and compliance standards eg PCI-P2PE, PCI-POI-PTS, ISO 27701, ISO27005, ISO31000, NIST, GDPR and governance/risk/compliance tools Requirements analysis and tracing tools such as DOORS and SD Elements; OneTrust privacy tool Understanding of security within DevOps and waterfall project methods, product development Experience of application security testing tools and devops frameworks, eg SonarQube, JIRA, static & dynamic code analysis/fuzzing Development tools/environments; Java, Visual Studio, C# In depth understanding of information security control tools, eg Splunk, Crowdstrike, Trend Micro DeepSecurity, Imperva WAF, Tenable.IO/Nessus, TripWire, Cisco IPS, F5, Centrify Experience of quality management systems and external audit standards eg ISO 9001, ISAE3402
