Penetration Tester 6 months Wokingham - 50% on site 450 Summary A dynamic and detail-oriented PMO to oversee and coordinate a Penetration Testing (PEN Testing) program. This role is pivotal in ensuring that testing activities are well-managed, results are clearly communicated, and remediation efforts are tracked across the organisation. While deep technical expertise in cybersecurity is not required, the ideal candidate will possess a strong understanding of PEN Testing concepts and be able to translate technical findings into actionable insights for senior stakeholders. Key Responsibilities Manage the end-to-end lifecycle of PEN Testing engagements across multiple teams and vendors Coordinate scheduling, resource allocation, and reporting timelines for all PEN Testing activities Review and consolidate PEN Test results, ensuring clarity and consistency in reporting Communicate findings, risks, and remediation progress to senior leadership and relevant business units Track and escalate unresolved issues or critical vulnerabilities Maintain documentation, dashboards, and audit trails for compliance and governance Collaborate with cybersecurity teams to ensure alignment with broader security strategy Facilitate post-test reviews and lessons learned sessions Required Skills & Experience Proven experience in a PMO, project management, or program coordination role Familiarity with cybersecurity principles, especially around PEN Testing and vulnerability management Strong communication skills with the ability to translate technical content for non-technical audiences Excellent organisational and stakeholder management abilities Experience working in regulated environments or with compliance frameworks (e.g. ISO 27001, NIST, etc.) is a plus Proficiency in project management tools (e.g. Jira, Confluence, MS Project, or similar) Additional Skills - Certifications like PMP, Prince2, or CISM/CISSP - Experience working with external PEN Testing vendors or consultancies - Ability to influence and drive remediation efforts across diverse team
Sep 16, 2025
Contractor
Penetration Tester 6 months Wokingham - 50% on site 450 Summary A dynamic and detail-oriented PMO to oversee and coordinate a Penetration Testing (PEN Testing) program. This role is pivotal in ensuring that testing activities are well-managed, results are clearly communicated, and remediation efforts are tracked across the organisation. While deep technical expertise in cybersecurity is not required, the ideal candidate will possess a strong understanding of PEN Testing concepts and be able to translate technical findings into actionable insights for senior stakeholders. Key Responsibilities Manage the end-to-end lifecycle of PEN Testing engagements across multiple teams and vendors Coordinate scheduling, resource allocation, and reporting timelines for all PEN Testing activities Review and consolidate PEN Test results, ensuring clarity and consistency in reporting Communicate findings, risks, and remediation progress to senior leadership and relevant business units Track and escalate unresolved issues or critical vulnerabilities Maintain documentation, dashboards, and audit trails for compliance and governance Collaborate with cybersecurity teams to ensure alignment with broader security strategy Facilitate post-test reviews and lessons learned sessions Required Skills & Experience Proven experience in a PMO, project management, or program coordination role Familiarity with cybersecurity principles, especially around PEN Testing and vulnerability management Strong communication skills with the ability to translate technical content for non-technical audiences Excellent organisational and stakeholder management abilities Experience working in regulated environments or with compliance frameworks (e.g. ISO 27001, NIST, etc.) is a plus Proficiency in project management tools (e.g. Jira, Confluence, MS Project, or similar) Additional Skills - Certifications like PMP, Prince2, or CISM/CISSP - Experience working with external PEN Testing vendors or consultancies - Ability to influence and drive remediation efforts across diverse team
Asset Security Manager South Wales (Hybrid Working) Up to £70,000 + Excellent Benefits What You'll Do: You'll lead the strategy and delivery for identifying and managing vulnerabilities across the organisation's IT and OT asset estate. From building and maintaining a complete asset register to defining how vulnerabilities are prioritised and addressed, you'll be the key figure ensuring the organisation's cyber security posture is understood and controlled. Collaborating with penetration testers, risk assessors and internal teams, you'll provide accurate insights into asset security while managing a small team of technical analysts and overseeing supplier relationships to drive successful outcomes. What You'll Bring: Proven experience in IT asset and vulnerability management In-depth knowledge of asset discovery tools, vulnerability scanning and remediation techniques Solid understanding of the differences between IT and operational technology environments Awareness of attacker tactics, techniques and procedures (TTPs) Experience leading a technical team and communicating effectively across technical and non-technical audiences Certifications such as CISSP, GIAC, or vendor-specific qualifications (e.g. Cisco, Microsoft, Nessus) are desirable Previous work in utilities or critical national infrastructure environments is a strong advantage Why You Should Apply: This is a high-impact role where you'll help shape a critical cyber security function. You'll work in a collaborative environment, receive full support for personal development, and gain exposure to both IT and OT security within a key UK industry. Hybrid working and excellent benefits make this a compelling opportunity for an experienced cyber professional looking to step into a strategic leadership role. Ready to Apply? Contact Dan Newton to find out more. Please apply with a CV and a cover letter outlining why you're perfect for the role. Know someone great for the job? We offer a referral scheme-just get in touch! Note: We do our best to respond to every application, but due to volume, we can't always guarantee it. If you haven't heard back within 7 days, unfortunately, you haven't been successful this time. Keep an eye on our site for new opportunities!
Sep 12, 2025
Full time
Asset Security Manager South Wales (Hybrid Working) Up to £70,000 + Excellent Benefits What You'll Do: You'll lead the strategy and delivery for identifying and managing vulnerabilities across the organisation's IT and OT asset estate. From building and maintaining a complete asset register to defining how vulnerabilities are prioritised and addressed, you'll be the key figure ensuring the organisation's cyber security posture is understood and controlled. Collaborating with penetration testers, risk assessors and internal teams, you'll provide accurate insights into asset security while managing a small team of technical analysts and overseeing supplier relationships to drive successful outcomes. What You'll Bring: Proven experience in IT asset and vulnerability management In-depth knowledge of asset discovery tools, vulnerability scanning and remediation techniques Solid understanding of the differences between IT and operational technology environments Awareness of attacker tactics, techniques and procedures (TTPs) Experience leading a technical team and communicating effectively across technical and non-technical audiences Certifications such as CISSP, GIAC, or vendor-specific qualifications (e.g. Cisco, Microsoft, Nessus) are desirable Previous work in utilities or critical national infrastructure environments is a strong advantage Why You Should Apply: This is a high-impact role where you'll help shape a critical cyber security function. You'll work in a collaborative environment, receive full support for personal development, and gain exposure to both IT and OT security within a key UK industry. Hybrid working and excellent benefits make this a compelling opportunity for an experienced cyber professional looking to step into a strategic leadership role. Ready to Apply? Contact Dan Newton to find out more. Please apply with a CV and a cover letter outlining why you're perfect for the role. Know someone great for the job? We offer a referral scheme-just get in touch! Note: We do our best to respond to every application, but due to volume, we can't always guarantee it. If you haven't heard back within 7 days, unfortunately, you haven't been successful this time. Keep an eye on our site for new opportunities!
Deerfoot Recruitment Solutions Limited
City, London
Penetration Testing Team Lead Technology Banking AVP Level Hybrid (London (Moorgate) 3 days per week) Salary & Package TBC Opportunity for a skilled Cyber Security Professional with penetration testing and red team expertise to join a global financial services organisation. This is a hands-on role where you'll simulate advanced cyber attacks, test defences, and influence enterprise-level security strategy. Key Responsibilities Lead red team operations , penetration testing, and ethical hacking engagements Plan and deliver cyber attack simulations, vulnerability assessments, and social engineering tests Work with SOC teams on purple team exercises to enhance detection and response Produce executive reporting on cyber threats, risks, and remediation progress Collaborate with security and infrastructure teams to strengthen overall cyber resilience Skills & Experience 3+ years in penetration testing / ethical hacking / red teaming Strong understanding of cyber threats, APTs, threat actor tactics, and exploit development Familiar with SIEM, defensive security monitoring, incident response, and detection engineering Deep knowledge of network, web application, and enterprise architecture security Excellent communication skills to present cyber risk insights to stakeholders Hybrid working model - 3 days in the London office. Competitive salary and benefits on offer. Apply now to take on a high-impact role in cyber security, penetration testing, and ethical hacking at enterprise scale. This role could suit individuals who have held the following role titles: Penetration Tester, Red Team Specialist, Lead Red Team Operator, Red Team Lead, Ethical Hacker, Security Tester, Vulnerability Analyst, Offensive Security Specialist, Threat Intelligence Analyst. Deerfoot Recruitment Solutions Ltd is a leading independent tech recruitment consultancy in the UK. For every CV sent to clients, we donate 1 to The Born Free Foundation. We are a Climate Action Workforce in partnership with Ecologi. If this role isn't right for you, explore our referral reward program with payouts at interview and placement milestones. Visit our website for details. Deerfoot Recruitment Solutions Ltd is acting as an Employment Agency in relation to this vacancy.
Sep 12, 2025
Full time
Penetration Testing Team Lead Technology Banking AVP Level Hybrid (London (Moorgate) 3 days per week) Salary & Package TBC Opportunity for a skilled Cyber Security Professional with penetration testing and red team expertise to join a global financial services organisation. This is a hands-on role where you'll simulate advanced cyber attacks, test defences, and influence enterprise-level security strategy. Key Responsibilities Lead red team operations , penetration testing, and ethical hacking engagements Plan and deliver cyber attack simulations, vulnerability assessments, and social engineering tests Work with SOC teams on purple team exercises to enhance detection and response Produce executive reporting on cyber threats, risks, and remediation progress Collaborate with security and infrastructure teams to strengthen overall cyber resilience Skills & Experience 3+ years in penetration testing / ethical hacking / red teaming Strong understanding of cyber threats, APTs, threat actor tactics, and exploit development Familiar with SIEM, defensive security monitoring, incident response, and detection engineering Deep knowledge of network, web application, and enterprise architecture security Excellent communication skills to present cyber risk insights to stakeholders Hybrid working model - 3 days in the London office. Competitive salary and benefits on offer. Apply now to take on a high-impact role in cyber security, penetration testing, and ethical hacking at enterprise scale. This role could suit individuals who have held the following role titles: Penetration Tester, Red Team Specialist, Lead Red Team Operator, Red Team Lead, Ethical Hacker, Security Tester, Vulnerability Analyst, Offensive Security Specialist, Threat Intelligence Analyst. Deerfoot Recruitment Solutions Ltd is a leading independent tech recruitment consultancy in the UK. For every CV sent to clients, we donate 1 to The Born Free Foundation. We are a Climate Action Workforce in partnership with Ecologi. If this role isn't right for you, explore our referral reward program with payouts at interview and placement milestones. Visit our website for details. Deerfoot Recruitment Solutions Ltd is acting as an Employment Agency in relation to this vacancy.
Computacenter AG & Co. oHG
Milton Keynes, Buckinghamshire
Select how often (in days) to receive an alert: Location: UK - Manchester, UK - Cardiff, UK - Edinburgh, UK - London, UK - Milton Keynes, UK - Mobile England, UK - Nottingham, UK - Reading Job-ID: 214652 Contract type: Standard Business Unit: Cyber Security Life on the team Computacenter is growing our penetration testing capability and we are looking for an experienced penetration tester to support the delivery of vulnerability assessment and penetration testing services to Computacenter and our customers delivered services. As a highly skilled and motivated Penetration Tester, you will join our dynamic Cybersecurity team. In this role, you will be responsible for identifying vulnerabilities in systems, applications, and networks through a variety of penetration testing methodologies. Your expertise will play a critical role in strengthening our security posture and safeguarding our valuable assets from cyber threats. We are keen to develop our own people and will look at individuals, you will be involved in so many business projects whilst working with passionate Cyber Security Professionals. If you are looking for a team that offers development and flexibility look no further and apply today What you'll do A highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. In this role, you will be responsible for identifying vulnerabilities in our systems, applications, and networks through various penetration testing methodologies. You will play a critical role in strengthening our security posture and protecting our valuable assets from cyber threats. You will: Conduct comprehensive penetration tests : Execute internal and external network penetration tests, web application penetration tests, mobile application penetration tests, API penetration tests, cloud security assessments, and social engineering simulations. Vulnerability identification and analysis : Research, identify, and exploit security vulnerabilities in a variety of systems and applications. Red/Purple/Blue Teaming: participate in exercises with the goal of increasing cyber resilience for both offensive and defensive. Reporting and documentation: Prepare detailed and professional penetration test reports, including executive summaries, technical findings, risk ratings, and actionable recommendations for remediation. Collaboration and communication : Work closely with development, operations, and security teams to communicate findings, explain risks, and provide guidance on remediation strategies. Tooling and methodology enhancement: Continuously research and evaluate new penetration testing tools, techniques, and methodologies to improve testing efficiency and effectiveness. Security awareness: Contribute to the development and delivery of security awareness training for internal staff. Stay current : Keep abreast of the latest security threats, vulnerabilities, exploits, and industry best practices. Threat modelling: Participate in threat modelling exercises to identify potential attack vectors and design flaws. Ad-hoc security testing : Perform ad-hoc security assessments and provide expert advice on security-related matters as needed. What you'll need OSCP, PNPT or equivalent certification At least three years' experience working full-time as a penetration tester on the following areas as a minimum: Infrastructure Active Directory networks Web Application penetration testing Cloud security (Entra ID/Azure) IoT mobile physical security / social engineering Ability to develop custom tools, or adapt existing tooling for the task at hand Demonstrable experience contributing to open-source tools Bachelor's degree in Cybersecurity, Information Technology, or a related field. About us With over 20,000 employees across the globe, we work at the heart of digitisation, advising organisations on IT strategy, implementing the most appropriate technology, and helping our customers to source, transform and manage their technology infrastructure in over 70 countries. We deliver digital technology to some of the world's greatest organisations, driving digital transformation, enabling people and their business.
Sep 11, 2025
Full time
Select how often (in days) to receive an alert: Location: UK - Manchester, UK - Cardiff, UK - Edinburgh, UK - London, UK - Milton Keynes, UK - Mobile England, UK - Nottingham, UK - Reading Job-ID: 214652 Contract type: Standard Business Unit: Cyber Security Life on the team Computacenter is growing our penetration testing capability and we are looking for an experienced penetration tester to support the delivery of vulnerability assessment and penetration testing services to Computacenter and our customers delivered services. As a highly skilled and motivated Penetration Tester, you will join our dynamic Cybersecurity team. In this role, you will be responsible for identifying vulnerabilities in systems, applications, and networks through a variety of penetration testing methodologies. Your expertise will play a critical role in strengthening our security posture and safeguarding our valuable assets from cyber threats. We are keen to develop our own people and will look at individuals, you will be involved in so many business projects whilst working with passionate Cyber Security Professionals. If you are looking for a team that offers development and flexibility look no further and apply today What you'll do A highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. In this role, you will be responsible for identifying vulnerabilities in our systems, applications, and networks through various penetration testing methodologies. You will play a critical role in strengthening our security posture and protecting our valuable assets from cyber threats. You will: Conduct comprehensive penetration tests : Execute internal and external network penetration tests, web application penetration tests, mobile application penetration tests, API penetration tests, cloud security assessments, and social engineering simulations. Vulnerability identification and analysis : Research, identify, and exploit security vulnerabilities in a variety of systems and applications. Red/Purple/Blue Teaming: participate in exercises with the goal of increasing cyber resilience for both offensive and defensive. Reporting and documentation: Prepare detailed and professional penetration test reports, including executive summaries, technical findings, risk ratings, and actionable recommendations for remediation. Collaboration and communication : Work closely with development, operations, and security teams to communicate findings, explain risks, and provide guidance on remediation strategies. Tooling and methodology enhancement: Continuously research and evaluate new penetration testing tools, techniques, and methodologies to improve testing efficiency and effectiveness. Security awareness: Contribute to the development and delivery of security awareness training for internal staff. Stay current : Keep abreast of the latest security threats, vulnerabilities, exploits, and industry best practices. Threat modelling: Participate in threat modelling exercises to identify potential attack vectors and design flaws. Ad-hoc security testing : Perform ad-hoc security assessments and provide expert advice on security-related matters as needed. What you'll need OSCP, PNPT or equivalent certification At least three years' experience working full-time as a penetration tester on the following areas as a minimum: Infrastructure Active Directory networks Web Application penetration testing Cloud security (Entra ID/Azure) IoT mobile physical security / social engineering Ability to develop custom tools, or adapt existing tooling for the task at hand Demonstrable experience contributing to open-source tools Bachelor's degree in Cybersecurity, Information Technology, or a related field. About us With over 20,000 employees across the globe, we work at the heart of digitisation, advising organisations on IT strategy, implementing the most appropriate technology, and helping our customers to source, transform and manage their technology infrastructure in over 70 countries. We deliver digital technology to some of the world's greatest organisations, driving digital transformation, enabling people and their business.
Select how often (in days) to receive an alert: Location: UK - Manchester, UK - Cardiff, UK - Edinburgh, UK - London, UK - Milton Keynes, UK - Mobile England, UK - Nottingham, UK - Reading Job-ID: 214652 Contract type: Standard Business Unit: Cyber Security Life on the team Computacenter is growing our penetration testing capability and we are looking for an experienced penetration tester to support the delivery of vulnerability assessment and penetration testing services to Computacenter and our customers delivered services. As a highly skilled and motivated Penetration Tester, you will join our dynamic Cybersecurity team. In this role, you will be responsible for identifying vulnerabilities in systems, applications, and networks through a variety of penetration testing methodologies. Your expertise will play a critical role in strengthening our security posture and safeguarding our valuable assets from cyber threats. We are keen to develop our own people and will look at individuals, you will be involved in so many business projects whilst working with passionate Cyber Security Professionals. If you are looking for a team that offers development and flexibility look no further and apply today What you'll do A highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. In this role, you will be responsible for identifying vulnerabilities in our systems, applications, and networks through various penetration testing methodologies. You will play a critical role in strengthening our security posture and protecting our valuable assets from cyber threats. You will: Conduct comprehensive penetration tests : Execute internal and external network penetration tests, web application penetration tests, mobile application penetration tests, API penetration tests, cloud security assessments, and social engineering simulations. Vulnerability identification and analysis : Research, identify, and exploit security vulnerabilities in a variety of systems and applications. Red/Purple/Blue Teaming: participate in exercises with the goal of increasing cyber resilience for both offensive and defensive. Reporting and documentation: Prepare detailed and professional penetration test reports, including executive summaries, technical findings, risk ratings, and actionable recommendations for remediation. Collaboration and communication : Work closely with development, operations, and security teams to communicate findings, explain risks, and provide guidance on remediation strategies. Tooling and methodology enhancement: Continuously research and evaluate new penetration testing tools, techniques, and methodologies to improve testing efficiency and effectiveness. Security awareness: Contribute to the development and delivery of security awareness training for internal staff. Stay current : Keep abreast of the latest security threats, vulnerabilities, exploits, and industry best practices. Threat modelling: Participate in threat modelling exercises to identify potential attack vectors and design flaws. Ad-hoc security testing : Perform ad-hoc security assessments and provide expert advice on security-related matters as needed. What you'll need OSCP, PNPT or equivalent certification At least three years' experience working full-time as a penetration tester on the following areas as a minimum: Infrastructure Active Directory networks Web Application penetration testing Cloud security (Entra ID/Azure) IoT mobile physical security / social engineering Ability to develop custom tools, or adapt existing tooling for the task at hand Demonstrable experience contributing to open-source tools Bachelor's degree in Cybersecurity, Information Technology, or a related field. About us With over 20,000 employees across the globe, we work at the heart of digitisation, advising organisations on IT strategy, implementing the most appropriate technology, and helping our customers to source, transform and manage their technology infrastructure in over 70 countries. We deliver digital technology to some of the world's greatest organisations, driving digital transformation, enabling people and their business.
Sep 11, 2025
Full time
Select how often (in days) to receive an alert: Location: UK - Manchester, UK - Cardiff, UK - Edinburgh, UK - London, UK - Milton Keynes, UK - Mobile England, UK - Nottingham, UK - Reading Job-ID: 214652 Contract type: Standard Business Unit: Cyber Security Life on the team Computacenter is growing our penetration testing capability and we are looking for an experienced penetration tester to support the delivery of vulnerability assessment and penetration testing services to Computacenter and our customers delivered services. As a highly skilled and motivated Penetration Tester, you will join our dynamic Cybersecurity team. In this role, you will be responsible for identifying vulnerabilities in systems, applications, and networks through a variety of penetration testing methodologies. Your expertise will play a critical role in strengthening our security posture and safeguarding our valuable assets from cyber threats. We are keen to develop our own people and will look at individuals, you will be involved in so many business projects whilst working with passionate Cyber Security Professionals. If you are looking for a team that offers development and flexibility look no further and apply today What you'll do A highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. In this role, you will be responsible for identifying vulnerabilities in our systems, applications, and networks through various penetration testing methodologies. You will play a critical role in strengthening our security posture and protecting our valuable assets from cyber threats. You will: Conduct comprehensive penetration tests : Execute internal and external network penetration tests, web application penetration tests, mobile application penetration tests, API penetration tests, cloud security assessments, and social engineering simulations. Vulnerability identification and analysis : Research, identify, and exploit security vulnerabilities in a variety of systems and applications. Red/Purple/Blue Teaming: participate in exercises with the goal of increasing cyber resilience for both offensive and defensive. Reporting and documentation: Prepare detailed and professional penetration test reports, including executive summaries, technical findings, risk ratings, and actionable recommendations for remediation. Collaboration and communication : Work closely with development, operations, and security teams to communicate findings, explain risks, and provide guidance on remediation strategies. Tooling and methodology enhancement: Continuously research and evaluate new penetration testing tools, techniques, and methodologies to improve testing efficiency and effectiveness. Security awareness: Contribute to the development and delivery of security awareness training for internal staff. Stay current : Keep abreast of the latest security threats, vulnerabilities, exploits, and industry best practices. Threat modelling: Participate in threat modelling exercises to identify potential attack vectors and design flaws. Ad-hoc security testing : Perform ad-hoc security assessments and provide expert advice on security-related matters as needed. What you'll need OSCP, PNPT or equivalent certification At least three years' experience working full-time as a penetration tester on the following areas as a minimum: Infrastructure Active Directory networks Web Application penetration testing Cloud security (Entra ID/Azure) IoT mobile physical security / social engineering Ability to develop custom tools, or adapt existing tooling for the task at hand Demonstrable experience contributing to open-source tools Bachelor's degree in Cybersecurity, Information Technology, or a related field. About us With over 20,000 employees across the globe, we work at the heart of digitisation, advising organisations on IT strategy, implementing the most appropriate technology, and helping our customers to source, transform and manage their technology infrastructure in over 70 countries. We deliver digital technology to some of the world's greatest organisations, driving digital transformation, enabling people and their business.
Select how often (in days) to receive an alert: Location: UK - Manchester, UK - Cardiff, UK - Edinburgh, UK - London, UK - Milton Keynes, UK - Mobile England, UK - Nottingham, UK - Reading Job-ID: 214652 Contract type: Standard Business Unit: Cyber Security Life on the team Computacenter is growing our penetration testing capability and we are looking for an experienced penetration tester to support the delivery of vulnerability assessment and penetration testing services to Computacenter and our customers delivered services. As a highly skilled and motivated Penetration Tester, you will join our dynamic Cybersecurity team. In this role, you will be responsible for identifying vulnerabilities in systems, applications, and networks through a variety of penetration testing methodologies. Your expertise will play a critical role in strengthening our security posture and safeguarding our valuable assets from cyber threats. We are keen to develop our own people and will look at individuals, you will be involved in so many business projects whilst working with passionate Cyber Security Professionals. If you are looking for a team that offers development and flexibility look no further and apply today What you'll do A highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. In this role, you will be responsible for identifying vulnerabilities in our systems, applications, and networks through various penetration testing methodologies. You will play a critical role in strengthening our security posture and protecting our valuable assets from cyber threats. You will: Conduct comprehensive penetration tests : Execute internal and external network penetration tests, web application penetration tests, mobile application penetration tests, API penetration tests, cloud security assessments, and social engineering simulations. Vulnerability identification and analysis : Research, identify, and exploit security vulnerabilities in a variety of systems and applications. Red/Purple/Blue Teaming: participate in exercises with the goal of increasing cyber resilience for both offensive and defensive. Reporting and documentation: Prepare detailed and professional penetration test reports, including executive summaries, technical findings, risk ratings, and actionable recommendations for remediation. Collaboration and communication : Work closely with development, operations, and security teams to communicate findings, explain risks, and provide guidance on remediation strategies. Tooling and methodology enhancement: Continuously research and evaluate new penetration testing tools, techniques, and methodologies to improve testing efficiency and effectiveness. Security awareness: Contribute to the development and delivery of security awareness training for internal staff. Stay current : Keep abreast of the latest security threats, vulnerabilities, exploits, and industry best practices. Threat modelling: Participate in threat modelling exercises to identify potential attack vectors and design flaws. Ad-hoc security testing : Perform ad-hoc security assessments and provide expert advice on security-related matters as needed. What you'll need OSCP, PNPT or equivalent certification At least three years' experience working full-time as a penetration tester on the following areas as a minimum: Infrastructure Active Directory networks Web Application penetration testing Cloud security (Entra ID/Azure) IoT mobile physical security / social engineering Ability to develop custom tools, or adapt existing tooling for the task at hand Demonstrable experience contributing to open-source tools Bachelor's degree in Cybersecurity, Information Technology, or a related field. About us With over 20,000 employees across the globe, we work at the heart of digitisation, advising organisations on IT strategy, implementing the most appropriate technology, and helping our customers to source, transform and manage their technology infrastructure in over 70 countries. We deliver digital technology to some of the world's greatest organisations, driving digital transformation, enabling people and their business.
Sep 11, 2025
Full time
Select how often (in days) to receive an alert: Location: UK - Manchester, UK - Cardiff, UK - Edinburgh, UK - London, UK - Milton Keynes, UK - Mobile England, UK - Nottingham, UK - Reading Job-ID: 214652 Contract type: Standard Business Unit: Cyber Security Life on the team Computacenter is growing our penetration testing capability and we are looking for an experienced penetration tester to support the delivery of vulnerability assessment and penetration testing services to Computacenter and our customers delivered services. As a highly skilled and motivated Penetration Tester, you will join our dynamic Cybersecurity team. In this role, you will be responsible for identifying vulnerabilities in systems, applications, and networks through a variety of penetration testing methodologies. Your expertise will play a critical role in strengthening our security posture and safeguarding our valuable assets from cyber threats. We are keen to develop our own people and will look at individuals, you will be involved in so many business projects whilst working with passionate Cyber Security Professionals. If you are looking for a team that offers development and flexibility look no further and apply today What you'll do A highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. In this role, you will be responsible for identifying vulnerabilities in our systems, applications, and networks through various penetration testing methodologies. You will play a critical role in strengthening our security posture and protecting our valuable assets from cyber threats. You will: Conduct comprehensive penetration tests : Execute internal and external network penetration tests, web application penetration tests, mobile application penetration tests, API penetration tests, cloud security assessments, and social engineering simulations. Vulnerability identification and analysis : Research, identify, and exploit security vulnerabilities in a variety of systems and applications. Red/Purple/Blue Teaming: participate in exercises with the goal of increasing cyber resilience for both offensive and defensive. Reporting and documentation: Prepare detailed and professional penetration test reports, including executive summaries, technical findings, risk ratings, and actionable recommendations for remediation. Collaboration and communication : Work closely with development, operations, and security teams to communicate findings, explain risks, and provide guidance on remediation strategies. Tooling and methodology enhancement: Continuously research and evaluate new penetration testing tools, techniques, and methodologies to improve testing efficiency and effectiveness. Security awareness: Contribute to the development and delivery of security awareness training for internal staff. Stay current : Keep abreast of the latest security threats, vulnerabilities, exploits, and industry best practices. Threat modelling: Participate in threat modelling exercises to identify potential attack vectors and design flaws. Ad-hoc security testing : Perform ad-hoc security assessments and provide expert advice on security-related matters as needed. What you'll need OSCP, PNPT or equivalent certification At least three years' experience working full-time as a penetration tester on the following areas as a minimum: Infrastructure Active Directory networks Web Application penetration testing Cloud security (Entra ID/Azure) IoT mobile physical security / social engineering Ability to develop custom tools, or adapt existing tooling for the task at hand Demonstrable experience contributing to open-source tools Bachelor's degree in Cybersecurity, Information Technology, or a related field. About us With over 20,000 employees across the globe, we work at the heart of digitisation, advising organisations on IT strategy, implementing the most appropriate technology, and helping our customers to source, transform and manage their technology infrastructure in over 70 countries. We deliver digital technology to some of the world's greatest organisations, driving digital transformation, enabling people and their business.
Select how often (in days) to receive an alert: Location: UK - Manchester, UK - Cardiff, UK - Edinburgh, UK - London, UK - Milton Keynes, UK - Mobile England, UK - Nottingham, UK - Reading Job-ID: 214652 Contract type: Standard Business Unit: Cyber Security Life on the team Computacenter is growing our penetration testing capability and we are looking for an experienced penetration tester to support the delivery of vulnerability assessment and penetration testing services to Computacenter and our customers delivered services. As a highly skilled and motivated Penetration Tester, you will join our dynamic Cybersecurity team. In this role, you will be responsible for identifying vulnerabilities in systems, applications, and networks through a variety of penetration testing methodologies. Your expertise will play a critical role in strengthening our security posture and safeguarding our valuable assets from cyber threats. We are keen to develop our own people and will look at individuals, you will be involved in so many business projects whilst working with passionate Cyber Security Professionals. If you are looking for a team that offers development and flexibility look no further and apply today What you'll do A highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. In this role, you will be responsible for identifying vulnerabilities in our systems, applications, and networks through various penetration testing methodologies. You will play a critical role in strengthening our security posture and protecting our valuable assets from cyber threats. You will: Conduct comprehensive penetration tests : Execute internal and external network penetration tests, web application penetration tests, mobile application penetration tests, API penetration tests, cloud security assessments, and social engineering simulations. Vulnerability identification and analysis : Research, identify, and exploit security vulnerabilities in a variety of systems and applications. Red/Purple/Blue Teaming: participate in exercises with the goal of increasing cyber resilience for both offensive and defensive. Reporting and documentation: Prepare detailed and professional penetration test reports, including executive summaries, technical findings, risk ratings, and actionable recommendations for remediation. Collaboration and communication : Work closely with development, operations, and security teams to communicate findings, explain risks, and provide guidance on remediation strategies. Tooling and methodology enhancement: Continuously research and evaluate new penetration testing tools, techniques, and methodologies to improve testing efficiency and effectiveness. Security awareness: Contribute to the development and delivery of security awareness training for internal staff. Stay current : Keep abreast of the latest security threats, vulnerabilities, exploits, and industry best practices. Threat modelling: Participate in threat modelling exercises to identify potential attack vectors and design flaws. Ad-hoc security testing : Perform ad-hoc security assessments and provide expert advice on security-related matters as needed. What you'll need OSCP, PNPT or equivalent certification At least three years' experience working full-time as a penetration tester on the following areas as a minimum: Infrastructure Active Directory networks Web Application penetration testing Cloud security (Entra ID/Azure) IoT mobile physical security / social engineering Ability to develop custom tools, or adapt existing tooling for the task at hand Demonstrable experience contributing to open-source tools Bachelor's degree in Cybersecurity, Information Technology, or a related field. About us With over 20,000 employees across the globe, we work at the heart of digitisation, advising organisations on IT strategy, implementing the most appropriate technology, and helping our customers to source, transform and manage their technology infrastructure in over 70 countries. We deliver digital technology to some of the world's greatest organisations, driving digital transformation, enabling people and their business.
Sep 11, 2025
Full time
Select how often (in days) to receive an alert: Location: UK - Manchester, UK - Cardiff, UK - Edinburgh, UK - London, UK - Milton Keynes, UK - Mobile England, UK - Nottingham, UK - Reading Job-ID: 214652 Contract type: Standard Business Unit: Cyber Security Life on the team Computacenter is growing our penetration testing capability and we are looking for an experienced penetration tester to support the delivery of vulnerability assessment and penetration testing services to Computacenter and our customers delivered services. As a highly skilled and motivated Penetration Tester, you will join our dynamic Cybersecurity team. In this role, you will be responsible for identifying vulnerabilities in systems, applications, and networks through a variety of penetration testing methodologies. Your expertise will play a critical role in strengthening our security posture and safeguarding our valuable assets from cyber threats. We are keen to develop our own people and will look at individuals, you will be involved in so many business projects whilst working with passionate Cyber Security Professionals. If you are looking for a team that offers development and flexibility look no further and apply today What you'll do A highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. In this role, you will be responsible for identifying vulnerabilities in our systems, applications, and networks through various penetration testing methodologies. You will play a critical role in strengthening our security posture and protecting our valuable assets from cyber threats. You will: Conduct comprehensive penetration tests : Execute internal and external network penetration tests, web application penetration tests, mobile application penetration tests, API penetration tests, cloud security assessments, and social engineering simulations. Vulnerability identification and analysis : Research, identify, and exploit security vulnerabilities in a variety of systems and applications. Red/Purple/Blue Teaming: participate in exercises with the goal of increasing cyber resilience for both offensive and defensive. Reporting and documentation: Prepare detailed and professional penetration test reports, including executive summaries, technical findings, risk ratings, and actionable recommendations for remediation. Collaboration and communication : Work closely with development, operations, and security teams to communicate findings, explain risks, and provide guidance on remediation strategies. Tooling and methodology enhancement: Continuously research and evaluate new penetration testing tools, techniques, and methodologies to improve testing efficiency and effectiveness. Security awareness: Contribute to the development and delivery of security awareness training for internal staff. Stay current : Keep abreast of the latest security threats, vulnerabilities, exploits, and industry best practices. Threat modelling: Participate in threat modelling exercises to identify potential attack vectors and design flaws. Ad-hoc security testing : Perform ad-hoc security assessments and provide expert advice on security-related matters as needed. What you'll need OSCP, PNPT or equivalent certification At least three years' experience working full-time as a penetration tester on the following areas as a minimum: Infrastructure Active Directory networks Web Application penetration testing Cloud security (Entra ID/Azure) IoT mobile physical security / social engineering Ability to develop custom tools, or adapt existing tooling for the task at hand Demonstrable experience contributing to open-source tools Bachelor's degree in Cybersecurity, Information Technology, or a related field. About us With over 20,000 employees across the globe, we work at the heart of digitisation, advising organisations on IT strategy, implementing the most appropriate technology, and helping our customers to source, transform and manage their technology infrastructure in over 70 countries. We deliver digital technology to some of the world's greatest organisations, driving digital transformation, enabling people and their business.
Computacenter AG & Co. oHG
Cardiff, South Glamorgan
Select how often (in days) to receive an alert: Location: UK - Manchester, UK - Cardiff, UK - Edinburgh, UK - London, UK - Milton Keynes, UK - Mobile England, UK - Nottingham, UK - Reading Job-ID: 214652 Contract type: Standard Business Unit: Cyber Security Life on the team Computacenter is growing our penetration testing capability and we are looking for an experienced penetration tester to support the delivery of vulnerability assessment and penetration testing services to Computacenter and our customers delivered services. As a highly skilled and motivated Penetration Tester, you will join our dynamic Cybersecurity team. In this role, you will be responsible for identifying vulnerabilities in systems, applications, and networks through a variety of penetration testing methodologies. Your expertise will play a critical role in strengthening our security posture and safeguarding our valuable assets from cyber threats. We are keen to develop our own people and will look at individuals, you will be involved in so many business projects whilst working with passionate Cyber Security Professionals. If you are looking for a team that offers development and flexibility look no further and apply today What you'll do A highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. In this role, you will be responsible for identifying vulnerabilities in our systems, applications, and networks through various penetration testing methodologies. You will play a critical role in strengthening our security posture and protecting our valuable assets from cyber threats. You will: Conduct comprehensive penetration tests : Execute internal and external network penetration tests, web application penetration tests, mobile application penetration tests, API penetration tests, cloud security assessments, and social engineering simulations. Vulnerability identification and analysis : Research, identify, and exploit security vulnerabilities in a variety of systems and applications. Red/Purple/Blue Teaming: participate in exercises with the goal of increasing cyber resilience for both offensive and defensive. Reporting and documentation: Prepare detailed and professional penetration test reports, including executive summaries, technical findings, risk ratings, and actionable recommendations for remediation. Collaboration and communication : Work closely with development, operations, and security teams to communicate findings, explain risks, and provide guidance on remediation strategies. Tooling and methodology enhancement: Continuously research and evaluate new penetration testing tools, techniques, and methodologies to improve testing efficiency and effectiveness. Security awareness: Contribute to the development and delivery of security awareness training for internal staff. Stay current : Keep abreast of the latest security threats, vulnerabilities, exploits, and industry best practices. Threat modelling: Participate in threat modelling exercises to identify potential attack vectors and design flaws. Ad-hoc security testing : Perform ad-hoc security assessments and provide expert advice on security-related matters as needed. What you'll need OSCP, PNPT or equivalent certification At least three years' experience working full-time as a penetration tester on the following areas as a minimum: Infrastructure Active Directory networks Web Application penetration testing Cloud security (Entra ID/Azure) IoT mobile physical security / social engineering Ability to develop custom tools, or adapt existing tooling for the task at hand Demonstrable experience contributing to open-source tools Bachelor's degree in Cybersecurity, Information Technology, or a related field. About us With over 20,000 employees across the globe, we work at the heart of digitisation, advising organisations on IT strategy, implementing the most appropriate technology, and helping our customers to source, transform and manage their technology infrastructure in over 70 countries. We deliver digital technology to some of the world's greatest organisations, driving digital transformation, enabling people and their business.
Sep 11, 2025
Full time
Select how often (in days) to receive an alert: Location: UK - Manchester, UK - Cardiff, UK - Edinburgh, UK - London, UK - Milton Keynes, UK - Mobile England, UK - Nottingham, UK - Reading Job-ID: 214652 Contract type: Standard Business Unit: Cyber Security Life on the team Computacenter is growing our penetration testing capability and we are looking for an experienced penetration tester to support the delivery of vulnerability assessment and penetration testing services to Computacenter and our customers delivered services. As a highly skilled and motivated Penetration Tester, you will join our dynamic Cybersecurity team. In this role, you will be responsible for identifying vulnerabilities in systems, applications, and networks through a variety of penetration testing methodologies. Your expertise will play a critical role in strengthening our security posture and safeguarding our valuable assets from cyber threats. We are keen to develop our own people and will look at individuals, you will be involved in so many business projects whilst working with passionate Cyber Security Professionals. If you are looking for a team that offers development and flexibility look no further and apply today What you'll do A highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. In this role, you will be responsible for identifying vulnerabilities in our systems, applications, and networks through various penetration testing methodologies. You will play a critical role in strengthening our security posture and protecting our valuable assets from cyber threats. You will: Conduct comprehensive penetration tests : Execute internal and external network penetration tests, web application penetration tests, mobile application penetration tests, API penetration tests, cloud security assessments, and social engineering simulations. Vulnerability identification and analysis : Research, identify, and exploit security vulnerabilities in a variety of systems and applications. Red/Purple/Blue Teaming: participate in exercises with the goal of increasing cyber resilience for both offensive and defensive. Reporting and documentation: Prepare detailed and professional penetration test reports, including executive summaries, technical findings, risk ratings, and actionable recommendations for remediation. Collaboration and communication : Work closely with development, operations, and security teams to communicate findings, explain risks, and provide guidance on remediation strategies. Tooling and methodology enhancement: Continuously research and evaluate new penetration testing tools, techniques, and methodologies to improve testing efficiency and effectiveness. Security awareness: Contribute to the development and delivery of security awareness training for internal staff. Stay current : Keep abreast of the latest security threats, vulnerabilities, exploits, and industry best practices. Threat modelling: Participate in threat modelling exercises to identify potential attack vectors and design flaws. Ad-hoc security testing : Perform ad-hoc security assessments and provide expert advice on security-related matters as needed. What you'll need OSCP, PNPT or equivalent certification At least three years' experience working full-time as a penetration tester on the following areas as a minimum: Infrastructure Active Directory networks Web Application penetration testing Cloud security (Entra ID/Azure) IoT mobile physical security / social engineering Ability to develop custom tools, or adapt existing tooling for the task at hand Demonstrable experience contributing to open-source tools Bachelor's degree in Cybersecurity, Information Technology, or a related field. About us With over 20,000 employees across the globe, we work at the heart of digitisation, advising organisations on IT strategy, implementing the most appropriate technology, and helping our customers to source, transform and manage their technology infrastructure in over 70 countries. We deliver digital technology to some of the world's greatest organisations, driving digital transformation, enabling people and their business.
Overview Pentest People is a UK-based security consultancy specialising in providing Penetration Testing as a Service to all its clients. Our approach combines consultant-led penetration testing with ongoing vulnerability assurance through our SecurePortal, providing clients with a continuous, living threat management system throughout the contract duration. As CHECK Team Leader, you will lead and oversee penetration testing engagements for government and critical infrastructure clients, ensuring compliance with NCSC methodologies while delivering technical and strategic value. This role requires both Infrastructure and Application CHECK certifications alongside a UK Cyber Security Council Principal Professional Title in Security Testing. You will be responsible for managing complex security assessments from initial scoping through final report delivery, leading a team of skilled penetration testers, and serving as the primary technical authority for client engagements. The position requires expertise in both infrastructure and application security domains, with the ability to transition between hands-on technical assessments and executive-level risk communication. This remote-based role includes regular on-site client work across the UK. You will work with government systems and sensitive commercial environments, making Security Check (SC) clearance essential for role performance. Key Responsibilities Lead complex penetration testing engagements across infrastructure and application domains, ensuring adherence to NCSC CHECK methodologies. Personally conduct advanced security assessments when required, with expertise in network penetration testing, web application security, cloud infrastructure assessment, and modern technology stacks, including containerised environments and microservices architectures. Maintain final accountability for all technical deliverables, conducting rigorous quality assurance reviews of vulnerability findings, exploitation techniques, and remediation recommendations. Ensure testing remains within agreed rules of engagement while maximising value through comprehensive security coverage. Stay current with emerging threats and advanced attack methodologies. Contribute to the success and growth of the team through mentorship, technical training, and career development support. Conduct performance reviews, identify skill gaps, and create targeted development plans. Foster knowledge sharing through internal training sessions, technical workshops, and collaborative problem-solving. Serve as the primary technical interface with client stakeholders, translating complex security vulnerabilities into business risk language for C-level executives and board members. Lead scoping meetings to understand objectives, regulatory requirements, and risk tolerance, developing tailored testing approaches for organisational needs. Manage sensitive client communications during active testing phases, providing regular status updates and immediate notification of critical findings. Build long-term strategic partnerships through exceptional service delivery and proactive security guidance. Ensure all penetration testing activities comply with NCSC CHECK scheme requirements, maintaining meticulous documentation and audit trails. Implement and maintain quality management processes aligned with ISO 9001 and ISO 27001 standards, driving continuous improvement in service delivery and client satisfaction. Review and approve penetration testing reports, ensuring technical accuracy, comprehensive coverage, and actionable remediation guidance. Maintain professional indemnity insurance compliance and ensure testing stays within legal boundaries defined by the Computer Misuse Act 1990. Support pre-sales activities through technical expertise and client presentations, contributing to proposal development and service scoping. Participate in client pitches, demonstrating technical capabilities and articulating value propositions that differentiate our services. Identify opportunities for service expansion and new offering development based on emerging threats and market demands. Contribute to thought leadership through blog posts, white papers, and conference presentations to establish organisational authority. Build strategic relationships with industry partners, professional associations, and government stakeholders to enhance market positioning. Essential Requirements Current CREST CCT Infrastructure (CCT INF) OR The Cyber Scheme CSTL Infrastructure certification. Current CREST CCT Application (CCT APP) OR The Cyber Scheme CSTL Application certification. Professional title at a minimum level of Principal Cyber Security Professional (PriCSP) in the Security Testing specialism. Valid security clearance at a minimum level of SC; DV is preferred. Thorough understanding of the requirements outlined by the CHECK Scheme. Minimum 3 years of hands-on penetration testing experience, including on-site work. Proven track record leading security assessments as part of a larger team. Experience working with government, defence, or critical infrastructure sectors. Demonstrated ability to scope, plan, and deliver complex multi-phase security assessments. Exceptional written and verbal communication skills for technical reporting and executive briefings. Ability to explain complex technical concepts to non-technical audiences. High-level reporting standards with ability to provide detailed feedback to colleagues. As part of the senior team, assist in developing and mentoring colleagues, including 1-on-1 sessions, group presentations, and internal bootcamps. Desirable Requirements In addition to holding CTL INF and CTL APP status, the ideal candidate will have the following capabilities: In-depth knowledge of cloud technologies (Azure and AWS; knowledge of GCP and OCI is a bonus), including configuration reviews and penetration testing of these environments. Capability to perform penetration testing of API, Mobile (Android & iOS), Desktop/Thick Client Apps. Understanding or practical experience of code reviews, including CI/CD pipelines. Practical experience of operating system hardening for Microsoft and Linux environments. Non Essential Industrial control systems (ICS/SCADA) security assessment Hardware security testing and IoT device assessment Security architecture review and design consultation While this role is advertised as remote, it will require occasional visits to client sites and the office as needed. Candidates must be based in the UK and have the right to work, as sponsorship cannot be provided. We understand that job descriptions offer only a glimpse of the role. For more details, please feel free to reach out or apply, and we will be happy to provide additional information. Pentest People is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.
Sep 11, 2025
Full time
Overview Pentest People is a UK-based security consultancy specialising in providing Penetration Testing as a Service to all its clients. Our approach combines consultant-led penetration testing with ongoing vulnerability assurance through our SecurePortal, providing clients with a continuous, living threat management system throughout the contract duration. As CHECK Team Leader, you will lead and oversee penetration testing engagements for government and critical infrastructure clients, ensuring compliance with NCSC methodologies while delivering technical and strategic value. This role requires both Infrastructure and Application CHECK certifications alongside a UK Cyber Security Council Principal Professional Title in Security Testing. You will be responsible for managing complex security assessments from initial scoping through final report delivery, leading a team of skilled penetration testers, and serving as the primary technical authority for client engagements. The position requires expertise in both infrastructure and application security domains, with the ability to transition between hands-on technical assessments and executive-level risk communication. This remote-based role includes regular on-site client work across the UK. You will work with government systems and sensitive commercial environments, making Security Check (SC) clearance essential for role performance. Key Responsibilities Lead complex penetration testing engagements across infrastructure and application domains, ensuring adherence to NCSC CHECK methodologies. Personally conduct advanced security assessments when required, with expertise in network penetration testing, web application security, cloud infrastructure assessment, and modern technology stacks, including containerised environments and microservices architectures. Maintain final accountability for all technical deliverables, conducting rigorous quality assurance reviews of vulnerability findings, exploitation techniques, and remediation recommendations. Ensure testing remains within agreed rules of engagement while maximising value through comprehensive security coverage. Stay current with emerging threats and advanced attack methodologies. Contribute to the success and growth of the team through mentorship, technical training, and career development support. Conduct performance reviews, identify skill gaps, and create targeted development plans. Foster knowledge sharing through internal training sessions, technical workshops, and collaborative problem-solving. Serve as the primary technical interface with client stakeholders, translating complex security vulnerabilities into business risk language for C-level executives and board members. Lead scoping meetings to understand objectives, regulatory requirements, and risk tolerance, developing tailored testing approaches for organisational needs. Manage sensitive client communications during active testing phases, providing regular status updates and immediate notification of critical findings. Build long-term strategic partnerships through exceptional service delivery and proactive security guidance. Ensure all penetration testing activities comply with NCSC CHECK scheme requirements, maintaining meticulous documentation and audit trails. Implement and maintain quality management processes aligned with ISO 9001 and ISO 27001 standards, driving continuous improvement in service delivery and client satisfaction. Review and approve penetration testing reports, ensuring technical accuracy, comprehensive coverage, and actionable remediation guidance. Maintain professional indemnity insurance compliance and ensure testing stays within legal boundaries defined by the Computer Misuse Act 1990. Support pre-sales activities through technical expertise and client presentations, contributing to proposal development and service scoping. Participate in client pitches, demonstrating technical capabilities and articulating value propositions that differentiate our services. Identify opportunities for service expansion and new offering development based on emerging threats and market demands. Contribute to thought leadership through blog posts, white papers, and conference presentations to establish organisational authority. Build strategic relationships with industry partners, professional associations, and government stakeholders to enhance market positioning. Essential Requirements Current CREST CCT Infrastructure (CCT INF) OR The Cyber Scheme CSTL Infrastructure certification. Current CREST CCT Application (CCT APP) OR The Cyber Scheme CSTL Application certification. Professional title at a minimum level of Principal Cyber Security Professional (PriCSP) in the Security Testing specialism. Valid security clearance at a minimum level of SC; DV is preferred. Thorough understanding of the requirements outlined by the CHECK Scheme. Minimum 3 years of hands-on penetration testing experience, including on-site work. Proven track record leading security assessments as part of a larger team. Experience working with government, defence, or critical infrastructure sectors. Demonstrated ability to scope, plan, and deliver complex multi-phase security assessments. Exceptional written and verbal communication skills for technical reporting and executive briefings. Ability to explain complex technical concepts to non-technical audiences. High-level reporting standards with ability to provide detailed feedback to colleagues. As part of the senior team, assist in developing and mentoring colleagues, including 1-on-1 sessions, group presentations, and internal bootcamps. Desirable Requirements In addition to holding CTL INF and CTL APP status, the ideal candidate will have the following capabilities: In-depth knowledge of cloud technologies (Azure and AWS; knowledge of GCP and OCI is a bonus), including configuration reviews and penetration testing of these environments. Capability to perform penetration testing of API, Mobile (Android & iOS), Desktop/Thick Client Apps. Understanding or practical experience of code reviews, including CI/CD pipelines. Practical experience of operating system hardening for Microsoft and Linux environments. Non Essential Industrial control systems (ICS/SCADA) security assessment Hardware security testing and IoT device assessment Security architecture review and design consultation While this role is advertised as remote, it will require occasional visits to client sites and the office as needed. Candidates must be based in the UK and have the right to work, as sponsorship cannot be provided. We understand that job descriptions offer only a glimpse of the role. For more details, please feel free to reach out or apply, and we will be happy to provide additional information. Pentest People is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.
Overview CHECK Team Leader - Up to £80,000 (Remote with occasional travel to client sites) We're seeking a certified CHECK Team Leader to lead high-impact security testing across enterprise and cloud environments. This is a key role for an experienced professional ready to take ownership of critical engagements and mentor junior testers. Key Responsibilities Lead infrastructure and cloud penetration tests (AWS, Azure, AD, Kubernetes). Mentor and support junior team members. Deliver clear, risk-focused technical reports. Support red teaming, adversary emulation, and R&D activities. Contribute to tooling and service development. Required Skills & Experience CHECK Team Leader certification (CTL-INF - Cyber Scheme or CREST). 2+ years as a CTL and 3+ years of penetration testing experience. Strong knowledge of Active Directory, infrastructure, and cloud security. Proficiency with tools like Burp Suite, Nmap, Metasploit, and Impacket. Excellent written and verbal communication skills. Desirable Certifications: OSCP, OSEP, CRTO. Scripting with Python, Bash, or PowerShell. Experience in red or purple teaming. Other Requirements UK residency for the past 5 years. Must be Eligible for SC/DV clearance. Full UK driving licence. Willingness to travel for client engagements within the UK. A fantastic opportunity for a skilled penetration tester to step into a senior leadership role. Apply now to help defend the UK's critical systems.
Sep 11, 2025
Full time
Overview CHECK Team Leader - Up to £80,000 (Remote with occasional travel to client sites) We're seeking a certified CHECK Team Leader to lead high-impact security testing across enterprise and cloud environments. This is a key role for an experienced professional ready to take ownership of critical engagements and mentor junior testers. Key Responsibilities Lead infrastructure and cloud penetration tests (AWS, Azure, AD, Kubernetes). Mentor and support junior team members. Deliver clear, risk-focused technical reports. Support red teaming, adversary emulation, and R&D activities. Contribute to tooling and service development. Required Skills & Experience CHECK Team Leader certification (CTL-INF - Cyber Scheme or CREST). 2+ years as a CTL and 3+ years of penetration testing experience. Strong knowledge of Active Directory, infrastructure, and cloud security. Proficiency with tools like Burp Suite, Nmap, Metasploit, and Impacket. Excellent written and verbal communication skills. Desirable Certifications: OSCP, OSEP, CRTO. Scripting with Python, Bash, or PowerShell. Experience in red or purple teaming. Other Requirements UK residency for the past 5 years. Must be Eligible for SC/DV clearance. Full UK driving licence. Willingness to travel for client engagements within the UK. A fantastic opportunity for a skilled penetration tester to step into a senior leadership role. Apply now to help defend the UK's critical systems.
Overview Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons At our core, we believe that growth comes from exposure to diverse challenges. In this role, you’ll have the opportunity to work across a wide range of engagements, thanks to the trust and scale of our clients. You will get hands-on experience with web application and API testing, Wireless assessments, Internal infrastructure tests, Mobile App security, Red and Purple team operations, Physical intrusion testing, hardware analysis, and more. No two projects are quite the same, and that's exactly how we like it. This variety allows our team to explore different domains, deepen existing strengths, and discover new areas of interest, all while solving real-world problems in live environments. Whether you’re still shaping your focus or refining an existing specialty, you’ll have space here to grow meaningfully. Manage risk for our clients to make them stronger for the future. Our Digital Services are designed to enable organisations to leverage our innovative methodologies, technology, and highly experienced professionals to manage their business risks most effectively. Working at BDO offers curious-minded people excellent exposure to all aspects of business strategy, operations and more. We’re a dynamic team of internal auditors, accountants, technology, and business transformation experts with disciplines in finance, risk, projects and change, cyber and digital, amongst others. Our extensive network and depth of experience mean we work in a highly client-centric way, focused on providing a collaborative, tailor-made advisory service. Our team helps clients manage their business-critical threats, such as cyber events, and build resilient businesses capable of responding to internal and external events which may interrupt their operations. Being known for exceptional client service in our chosen markets, we put innovation and agility at the heart of everything we do. This is your chance to join a fast-paced, growing team and help shape the future of Digital at BDO. Responsibilities We are seeking a highly skilled and experienced Senior Offensive Security penetration tester to join our dynamic team. This role involves conducting sophisticated penetration testing and red team engagements across various client systems and applications. The successful candidate will be instrumental in identifying vulnerabilities, enhancing client security postures, and leading initiatives to develop cutting-edge penetration testing methodologies and tools. Clients across industries and geographies, staying at the forefront of knowledge of the threat landscape, cyber defence best practices and regulatory expectations. Conduct sophisticated penetration testing and red team engagements across diverse client systems and applications. Identify vulnerabilities and strengthen client security postures. Lead initiatives to develop cutting-edge penetration testing methodologies and tools. Stay at the forefront of threat intelligence, cyber defence best practices, and regulatory expectations. Qualifications Strict Requirement: Strong certification in penetration testing such as OSCP (Offensive Security Certified Professional), CTM (Check Team Member), CRT (CREST Registered Tester) and OSWA (Offensive Security Web Attacks) or advanced certifications such as OSEP, CCSAM and CTL. Solid experience in offensive security-through professional penetration testing, red teaming, bug bounty, capture-the-flag, or related personal/research work. Proven ability to deliver impactful client engagements with technical depth and risk understanding. Deep knowledge of network protocols, services, operating systems, and applications and how to assess them. Proficiency with tools such as Metasploit, Burp Suite, proxies (Caido, ZAP), Nessus, Cobalt Strike or other C2 frameworks; bonus for building tools or contributing to community projects. Excellent problem-solving skills and a persistent, curious, ethical hacking mindset. Experience coding/scripting custom tools in Python, Bash, PowerShell, or equivalent. Ability to communicate technical findings clearly to both technical and non-technical stakeholders. Be yourself It’s at the core of the company’s and team’s vision. You’ll be able to truly be yourself; we’ll recognise and value you for who you are and celebrate your contributions. We’re committed to agile working, and we offer the opportunity to work in ways that suit you, your teams, and the tasks at hand. At BDO, we’re committed to helping you achieve your personal and professional goals, with structured development frameworks, resources, and mentorship. We’ll align your client engagements with your learning objectives, giving you the chance to apply new skills, explore areas of interest, and gain practical experience, with our team culture emphasizing peer support, collaboration, and knowledge sharing on every project. We’re in it together Mutual support and respect are core values. Our agile framework keeps us connected so teams can share ideas and help one another. You’ll have access to people and resources to do your best work, and we encourage you to build your network and share skills. We’ve invested in state-of-the-art collaboration spaces in our offices. BDO’s people bring knowledge and experience, and you’ll be encouraged to learn and grow with multidisciplinary events and dedicated resources. We’re looking forward to the future BDO helps entrepreneurial businesses succeed and fuel the UK economy. Our success is powered by our people, and we’re always investing in you. Across the UK thousands of minds come together to help companies achieve their ambitions. We’ve got a clear purpose and a future to shape, building on our strengths with global reach, integrity and expertise. We shape the future with openness and clarity, empowering people to think creatively about how we can do things better.
Sep 11, 2025
Full time
Overview Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons At our core, we believe that growth comes from exposure to diverse challenges. In this role, you’ll have the opportunity to work across a wide range of engagements, thanks to the trust and scale of our clients. You will get hands-on experience with web application and API testing, Wireless assessments, Internal infrastructure tests, Mobile App security, Red and Purple team operations, Physical intrusion testing, hardware analysis, and more. No two projects are quite the same, and that's exactly how we like it. This variety allows our team to explore different domains, deepen existing strengths, and discover new areas of interest, all while solving real-world problems in live environments. Whether you’re still shaping your focus or refining an existing specialty, you’ll have space here to grow meaningfully. Manage risk for our clients to make them stronger for the future. Our Digital Services are designed to enable organisations to leverage our innovative methodologies, technology, and highly experienced professionals to manage their business risks most effectively. Working at BDO offers curious-minded people excellent exposure to all aspects of business strategy, operations and more. We’re a dynamic team of internal auditors, accountants, technology, and business transformation experts with disciplines in finance, risk, projects and change, cyber and digital, amongst others. Our extensive network and depth of experience mean we work in a highly client-centric way, focused on providing a collaborative, tailor-made advisory service. Our team helps clients manage their business-critical threats, such as cyber events, and build resilient businesses capable of responding to internal and external events which may interrupt their operations. Being known for exceptional client service in our chosen markets, we put innovation and agility at the heart of everything we do. This is your chance to join a fast-paced, growing team and help shape the future of Digital at BDO. Responsibilities We are seeking a highly skilled and experienced Senior Offensive Security penetration tester to join our dynamic team. This role involves conducting sophisticated penetration testing and red team engagements across various client systems and applications. The successful candidate will be instrumental in identifying vulnerabilities, enhancing client security postures, and leading initiatives to develop cutting-edge penetration testing methodologies and tools. Clients across industries and geographies, staying at the forefront of knowledge of the threat landscape, cyber defence best practices and regulatory expectations. Conduct sophisticated penetration testing and red team engagements across diverse client systems and applications. Identify vulnerabilities and strengthen client security postures. Lead initiatives to develop cutting-edge penetration testing methodologies and tools. Stay at the forefront of threat intelligence, cyber defence best practices, and regulatory expectations. Qualifications Strict Requirement: Strong certification in penetration testing such as OSCP (Offensive Security Certified Professional), CTM (Check Team Member), CRT (CREST Registered Tester) and OSWA (Offensive Security Web Attacks) or advanced certifications such as OSEP, CCSAM and CTL. Solid experience in offensive security-through professional penetration testing, red teaming, bug bounty, capture-the-flag, or related personal/research work. Proven ability to deliver impactful client engagements with technical depth and risk understanding. Deep knowledge of network protocols, services, operating systems, and applications and how to assess them. Proficiency with tools such as Metasploit, Burp Suite, proxies (Caido, ZAP), Nessus, Cobalt Strike or other C2 frameworks; bonus for building tools or contributing to community projects. Excellent problem-solving skills and a persistent, curious, ethical hacking mindset. Experience coding/scripting custom tools in Python, Bash, PowerShell, or equivalent. Ability to communicate technical findings clearly to both technical and non-technical stakeholders. Be yourself It’s at the core of the company’s and team’s vision. You’ll be able to truly be yourself; we’ll recognise and value you for who you are and celebrate your contributions. We’re committed to agile working, and we offer the opportunity to work in ways that suit you, your teams, and the tasks at hand. At BDO, we’re committed to helping you achieve your personal and professional goals, with structured development frameworks, resources, and mentorship. We’ll align your client engagements with your learning objectives, giving you the chance to apply new skills, explore areas of interest, and gain practical experience, with our team culture emphasizing peer support, collaboration, and knowledge sharing on every project. We’re in it together Mutual support and respect are core values. Our agile framework keeps us connected so teams can share ideas and help one another. You’ll have access to people and resources to do your best work, and we encourage you to build your network and share skills. We’ve invested in state-of-the-art collaboration spaces in our offices. BDO’s people bring knowledge and experience, and you’ll be encouraged to learn and grow with multidisciplinary events and dedicated resources. We’re looking forward to the future BDO helps entrepreneurial businesses succeed and fuel the UK economy. Our success is powered by our people, and we’re always investing in you. Across the UK thousands of minds come together to help companies achieve their ambitions. We’ve got a clear purpose and a future to shape, building on our strengths with global reach, integrity and expertise. We shape the future with openness and clarity, empowering people to think creatively about how we can do things better.
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons At our core, we believe that growth comes from exposure to diverse challenges. In this role, you'll have the opportunity to work across a wide range of engagements, thanks to the trust and scale of our clients. You will get hands-on experience with web application and API testing, Wireless assessments, Internal infrastructure tests, Mobile App security, Red and Purple team operations, Physical intrusion testing, hardware analysis, and more. No two projects are quite the same, and that's exactly how we like it. This variety allows our team to explore different domains, deepen existing strengths, and discover new areas of interest, all while solving real-world problems in live environments. Whether you're still shaping your focus or refining an existing specialty, you'll have space here to grow meaningfully. Manage risk for our clients to make them stronger for the future. Our Digital Services are designed to enable organisations to leverage our innovative methodologies, technology, and highly experienced professionals to manage their business risks most effectively. Working at BDO offers curious-minded people excellent exposure to all aspects of business strategy, operations and more. We're a dynamic team of internal auditors, accountants, technology, and business transformation experts with disciplines in finance, risk, projects and change, cyber and digital, amongst others. Our extensive network and depth of experience mean we work in a highly client-centric way, focused on providing a collaborative, tailor-made advisory service. Our team helps clients manage their business-critical threats, such as cyber events, and build resilient businesses capable of responding to internal and external events which may interrupt their operations. Being known for exceptional client service in our chosen markets, we put innovation and agility at the heart of everything we do. This is your chance to join a fast-paced, growing team and help shape the future of Digital at BDO. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly skilled and experienced offensive security penetration tester to join our dynamic team. This role involves conducting sophisticated penetration testing and red team engagements across various client systems and applications. The successful candidate will be instrumental in identifying vulnerabilities, enhancing client security postures, and leading initiatives to develop cutting-edge penetration testing methodologies and tools. Clients across industries and geographies, staying at the forefront of knowledge of the threat landscape, cyber defence best practices and regulatory expectations. Requirements : • Strict Requirement: Strong certification in penetration testing such as OSCP (Offensive Security Certified Professional), CTM (Check Team Member), CRT (CREST Registered Tester) and OSWA (Offensive Security Web Attacks) or even better if you have Advanced certifications such as OSEP(OffSec Experience Penetration Tester), CCSAM (CREST Certified Simulated Attack Manager) and CTL (Check Team Leader). • Solid experience in offensive security-whether through professional penetration testing, red teaming, bug bounty work, capture-the-flag competitions, or personal research projects. • Proven ability to deliver impactful client engagements, demonstrating both technical depth and a practical understanding of risk. • Deep knowledge of network protocols, different services, operating systems, different applications and how to break them. • Proficiency in tools such as Metasploit, Burp Suite or other proxies such as Caido or Zap, Nessus, CobaltStrike or other C2 frameworks, etc. Bonus points for building your own tools, contributing to community projects, or chaining techniques creatively. • Excellent problem-solving skills and a passion for ethical hacking that is persistent, curious, and know how to pivot when things do not go as planned. • Experience coding and scripting custom tools in Python, Bash, PowerShell, or anything else that gets the job done. • Ability to communicate technical findings clearly to both technical and non-technical stakeholders. Be yourself It's at the core of the company's and team's vision. You'll be able to truly be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suits them, their teams, and the tasks at hand. At BDO, we're committed to helping you achieve your personal and professional goals. We provide structured development frameworks, resources, and mentorship to support your growth-whether you're looking to deepen a specific skillset or broaden your expertise across domains. We'll align your client engagements with your learning objectives, giving you the chance to apply new skills, explore areas of interest, and gain practical experience. You won't be navigating this alone-our team culture emphasizes peer support, collaboration, and knowledge sharing on every project. We're in it together Mutual support and respect are one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fueling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions. We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
Jul 16, 2025
Full time
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons At our core, we believe that growth comes from exposure to diverse challenges. In this role, you'll have the opportunity to work across a wide range of engagements, thanks to the trust and scale of our clients. You will get hands-on experience with web application and API testing, Wireless assessments, Internal infrastructure tests, Mobile App security, Red and Purple team operations, Physical intrusion testing, hardware analysis, and more. No two projects are quite the same, and that's exactly how we like it. This variety allows our team to explore different domains, deepen existing strengths, and discover new areas of interest, all while solving real-world problems in live environments. Whether you're still shaping your focus or refining an existing specialty, you'll have space here to grow meaningfully. Manage risk for our clients to make them stronger for the future. Our Digital Services are designed to enable organisations to leverage our innovative methodologies, technology, and highly experienced professionals to manage their business risks most effectively. Working at BDO offers curious-minded people excellent exposure to all aspects of business strategy, operations and more. We're a dynamic team of internal auditors, accountants, technology, and business transformation experts with disciplines in finance, risk, projects and change, cyber and digital, amongst others. Our extensive network and depth of experience mean we work in a highly client-centric way, focused on providing a collaborative, tailor-made advisory service. Our team helps clients manage their business-critical threats, such as cyber events, and build resilient businesses capable of responding to internal and external events which may interrupt their operations. Being known for exceptional client service in our chosen markets, we put innovation and agility at the heart of everything we do. This is your chance to join a fast-paced, growing team and help shape the future of Digital at BDO. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly skilled and experienced offensive security penetration tester to join our dynamic team. This role involves conducting sophisticated penetration testing and red team engagements across various client systems and applications. The successful candidate will be instrumental in identifying vulnerabilities, enhancing client security postures, and leading initiatives to develop cutting-edge penetration testing methodologies and tools. Clients across industries and geographies, staying at the forefront of knowledge of the threat landscape, cyber defence best practices and regulatory expectations. Requirements : • Strict Requirement: Strong certification in penetration testing such as OSCP (Offensive Security Certified Professional), CTM (Check Team Member), CRT (CREST Registered Tester) and OSWA (Offensive Security Web Attacks) or even better if you have Advanced certifications such as OSEP(OffSec Experience Penetration Tester), CCSAM (CREST Certified Simulated Attack Manager) and CTL (Check Team Leader). • Solid experience in offensive security-whether through professional penetration testing, red teaming, bug bounty work, capture-the-flag competitions, or personal research projects. • Proven ability to deliver impactful client engagements, demonstrating both technical depth and a practical understanding of risk. • Deep knowledge of network protocols, different services, operating systems, different applications and how to break them. • Proficiency in tools such as Metasploit, Burp Suite or other proxies such as Caido or Zap, Nessus, CobaltStrike or other C2 frameworks, etc. Bonus points for building your own tools, contributing to community projects, or chaining techniques creatively. • Excellent problem-solving skills and a passion for ethical hacking that is persistent, curious, and know how to pivot when things do not go as planned. • Experience coding and scripting custom tools in Python, Bash, PowerShell, or anything else that gets the job done. • Ability to communicate technical findings clearly to both technical and non-technical stakeholders. Be yourself It's at the core of the company's and team's vision. You'll be able to truly be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suits them, their teams, and the tasks at hand. At BDO, we're committed to helping you achieve your personal and professional goals. We provide structured development frameworks, resources, and mentorship to support your growth-whether you're looking to deepen a specific skillset or broaden your expertise across domains. We'll align your client engagements with your learning objectives, giving you the chance to apply new skills, explore areas of interest, and gain practical experience. You won't be navigating this alone-our team culture emphasizes peer support, collaboration, and knowledge sharing on every project. We're in it together Mutual support and respect are one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fueling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions. We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons At our core, we believe that growth comes from exposure to diverse challenges. In this role, you'll have the opportunity to work across a wide range of engagements, thanks to the trust and scale of our clients. You will get hands-on experience with web application and API testing, Wireless assessments, Internal infrastructure tests, Mobile App security, Red and Purple team operations, Physical intrusion testing, hardware analysis, and more. No two projects are quite the same, and that's exactly how we like it. This variety allows our team to explore different domains, deepen existing strengths, and discover new areas of interest, all while solving real-world problems in live environments. Whether you're still shaping your focus or refining an existing specialty, you'll have space here to grow meaningfully. Manage risk for our clients to make them stronger for the future. Our Digital Services are designed to enable organisations to leverage our innovative methodologies, technology, and highly experienced professionals to manage their business risks most effectively. Working at BDO offers curious-minded people excellent exposure to all aspects of business strategy, operations and more. We're a dynamic team of internal auditors, accountants, technology, and business transformation experts with disciplines in finance, risk, projects and change, cyber and digital, amongst others. Our extensive network and depth of experience mean we work in a highly client-centric way, focused on providing a collaborative, tailor-made advisory service. Our team helps clients manage their business-critical threats, such as cyber events, and build resilient businesses capable of responding to internal and external events which may interrupt their operations. Being known for exceptional client service in our chosen markets, we put innovation and agility at the heart of everything we do. This is your chance to join a fast-paced, growing team and help shape the future of Digital at BDO. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly skilled and experienced offensive security penetration tester to join our dynamic team. This role involves conducting sophisticated penetration testing and red team engagements across various client systems and applications. The successful candidate will be instrumental in identifying vulnerabilities, enhancing client security postures, and leading initiatives to develop cutting-edge penetration testing methodologies and tools. Clients across industries and geographies, staying at the forefront of knowledge of the threat landscape, cyber defence best practices and regulatory expectations. Requirements : • Strict Requirement: Strong certification in penetration testing such as OSCP (Offensive Security Certified Professional), CTM (Check Team Member), CRT (CREST Registered Tester) and OSWA (Offensive Security Web Attacks) or even better if you have Advanced certifications such as OSEP(OffSec Experience Penetration Tester), CCSAM (CREST Certified Simulated Attack Manager) and CTL (Check Team Leader). • Solid experience in offensive security-whether through professional penetration testing, red teaming, bug bounty work, capture-the-flag competitions, or personal research projects. • Proven ability to deliver impactful client engagements, demonstrating both technical depth and a practical understanding of risk. • Deep knowledge of network protocols, different services, operating systems, different applications and how to break them. • Proficiency in tools such as Metasploit, Burp Suite or other proxies such as Caido or Zap, Nessus, CobaltStrike or other C2 frameworks, etc. Bonus points for building your own tools, contributing to community projects, or chaining techniques creatively. • Excellent problem-solving skills and a passion for ethical hacking that is persistent, curious, and know how to pivot when things do not go as planned. • Experience coding and scripting custom tools in Python, Bash, PowerShell, or anything else that gets the job done. • Ability to communicate technical findings clearly to both technical and non-technical stakeholders. Be yourself It's at the core of the company's and team's vision. You'll be able to truly be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suits them, their teams, and the tasks at hand. At BDO, we're committed to helping you achieve your personal and professional goals. We provide structured development frameworks, resources, and mentorship to support your growth-whether you're looking to deepen a specific skillset or broaden your expertise across domains. We'll align your client engagements with your learning objectives, giving you the chance to apply new skills, explore areas of interest, and gain practical experience. You won't be navigating this alone-our team culture emphasizes peer support, collaboration, and knowledge sharing on every project. We're in it together Mutual support and respect are one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fueling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions. We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
Jul 16, 2025
Full time
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons At our core, we believe that growth comes from exposure to diverse challenges. In this role, you'll have the opportunity to work across a wide range of engagements, thanks to the trust and scale of our clients. You will get hands-on experience with web application and API testing, Wireless assessments, Internal infrastructure tests, Mobile App security, Red and Purple team operations, Physical intrusion testing, hardware analysis, and more. No two projects are quite the same, and that's exactly how we like it. This variety allows our team to explore different domains, deepen existing strengths, and discover new areas of interest, all while solving real-world problems in live environments. Whether you're still shaping your focus or refining an existing specialty, you'll have space here to grow meaningfully. Manage risk for our clients to make them stronger for the future. Our Digital Services are designed to enable organisations to leverage our innovative methodologies, technology, and highly experienced professionals to manage their business risks most effectively. Working at BDO offers curious-minded people excellent exposure to all aspects of business strategy, operations and more. We're a dynamic team of internal auditors, accountants, technology, and business transformation experts with disciplines in finance, risk, projects and change, cyber and digital, amongst others. Our extensive network and depth of experience mean we work in a highly client-centric way, focused on providing a collaborative, tailor-made advisory service. Our team helps clients manage their business-critical threats, such as cyber events, and build resilient businesses capable of responding to internal and external events which may interrupt their operations. Being known for exceptional client service in our chosen markets, we put innovation and agility at the heart of everything we do. This is your chance to join a fast-paced, growing team and help shape the future of Digital at BDO. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly skilled and experienced offensive security penetration tester to join our dynamic team. This role involves conducting sophisticated penetration testing and red team engagements across various client systems and applications. The successful candidate will be instrumental in identifying vulnerabilities, enhancing client security postures, and leading initiatives to develop cutting-edge penetration testing methodologies and tools. Clients across industries and geographies, staying at the forefront of knowledge of the threat landscape, cyber defence best practices and regulatory expectations. Requirements : • Strict Requirement: Strong certification in penetration testing such as OSCP (Offensive Security Certified Professional), CTM (Check Team Member), CRT (CREST Registered Tester) and OSWA (Offensive Security Web Attacks) or even better if you have Advanced certifications such as OSEP(OffSec Experience Penetration Tester), CCSAM (CREST Certified Simulated Attack Manager) and CTL (Check Team Leader). • Solid experience in offensive security-whether through professional penetration testing, red teaming, bug bounty work, capture-the-flag competitions, or personal research projects. • Proven ability to deliver impactful client engagements, demonstrating both technical depth and a practical understanding of risk. • Deep knowledge of network protocols, different services, operating systems, different applications and how to break them. • Proficiency in tools such as Metasploit, Burp Suite or other proxies such as Caido or Zap, Nessus, CobaltStrike or other C2 frameworks, etc. Bonus points for building your own tools, contributing to community projects, or chaining techniques creatively. • Excellent problem-solving skills and a passion for ethical hacking that is persistent, curious, and know how to pivot when things do not go as planned. • Experience coding and scripting custom tools in Python, Bash, PowerShell, or anything else that gets the job done. • Ability to communicate technical findings clearly to both technical and non-technical stakeholders. Be yourself It's at the core of the company's and team's vision. You'll be able to truly be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suits them, their teams, and the tasks at hand. At BDO, we're committed to helping you achieve your personal and professional goals. We provide structured development frameworks, resources, and mentorship to support your growth-whether you're looking to deepen a specific skillset or broaden your expertise across domains. We'll align your client engagements with your learning objectives, giving you the chance to apply new skills, explore areas of interest, and gain practical experience. You won't be navigating this alone-our team culture emphasizes peer support, collaboration, and knowledge sharing on every project. We're in it together Mutual support and respect are one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fueling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions. We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons At our core, we believe that growth comes from exposure to diverse challenges. In this role, you'll have the opportunity to work across a wide range of engagements, thanks to the trust and scale of our clients. You will get hands-on experience with web application and API testing, Wireless assessments, Internal infrastructure tests, Mobile App security, Red and Purple team operations, Physical intrusion testing, hardware analysis, and more. No two projects are quite the same, and that's exactly how we like it. This variety allows our team to explore different domains, deepen existing strengths, and discover new areas of interest, all while solving real-world problems in live environments. Whether you're still shaping your focus or refining an existing specialty, you'll have space here to grow meaningfully. Manage risk for our clients to make them stronger for the future. Our Digital Services are designed to enable organisations to leverage our innovative methodologies, technology, and highly experienced professionals to manage their business risks most effectively. Working at BDO offers curious-minded people excellent exposure to all aspects of business strategy, operations and more. We're a dynamic team of internal auditors, accountants, technology, and business transformation experts with disciplines in finance, risk, projects and change, cyber and digital, amongst others. Our extensive network and depth of experience mean we work in a highly client-centric way, focused on providing a collaborative, tailor-made advisory service. Our team helps clients manage their business-critical threats, such as cyber events, and build resilient businesses capable of responding to internal and external events which may interrupt their operations. Being known for exceptional client service in our chosen markets, we put innovation and agility at the heart of everything we do. This is your chance to join a fast-paced, growing team and help shape the future of Digital at BDO. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly skilled and experienced offensive security penetration tester to join our dynamic team. This role involves conducting sophisticated penetration testing and red team engagements across various client systems and applications. The successful candidate will be instrumental in identifying vulnerabilities, enhancing client security postures, and leading initiatives to develop cutting-edge penetration testing methodologies and tools. Clients across industries and geographies, staying at the forefront of knowledge of the threat landscape, cyber defence best practices and regulatory expectations. Requirements : • Strict Requirement: Strong certification in penetration testing such as OSCP (Offensive Security Certified Professional), CTM (Check Team Member), CRT (CREST Registered Tester) and OSWA (Offensive Security Web Attacks) or even better if you have Advanced certifications such as OSEP(OffSec Experience Penetration Tester), CCSAM (CREST Certified Simulated Attack Manager) and CTL (Check Team Leader). • Solid experience in offensive security-whether through professional penetration testing, red teaming, bug bounty work, capture-the-flag competitions, or personal research projects. • Proven ability to deliver impactful client engagements, demonstrating both technical depth and a practical understanding of risk. • Deep knowledge of network protocols, different services, operating systems, different applications and how to break them. • Proficiency in tools such as Metasploit, Burp Suite or other proxies such as Caido or Zap, Nessus, CobaltStrike or other C2 frameworks, etc. Bonus points for building your own tools, contributing to community projects, or chaining techniques creatively. • Excellent problem-solving skills and a passion for ethical hacking that is persistent, curious, and know how to pivot when things do not go as planned. • Experience coding and scripting custom tools in Python, Bash, PowerShell, or anything else that gets the job done. • Ability to communicate technical findings clearly to both technical and non-technical stakeholders. Be yourself It's at the core of the company's and team's vision. You'll be able to truly be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suits them, their teams, and the tasks at hand. At BDO, we're committed to helping you achieve your personal and professional goals. We provide structured development frameworks, resources, and mentorship to support your growth-whether you're looking to deepen a specific skillset or broaden your expertise across domains. We'll align your client engagements with your learning objectives, giving you the chance to apply new skills, explore areas of interest, and gain practical experience. You won't be navigating this alone-our team culture emphasizes peer support, collaboration, and knowledge sharing on every project. We're in it together Mutual support and respect are one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fueling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions. We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
Jul 14, 2025
Full time
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons At our core, we believe that growth comes from exposure to diverse challenges. In this role, you'll have the opportunity to work across a wide range of engagements, thanks to the trust and scale of our clients. You will get hands-on experience with web application and API testing, Wireless assessments, Internal infrastructure tests, Mobile App security, Red and Purple team operations, Physical intrusion testing, hardware analysis, and more. No two projects are quite the same, and that's exactly how we like it. This variety allows our team to explore different domains, deepen existing strengths, and discover new areas of interest, all while solving real-world problems in live environments. Whether you're still shaping your focus or refining an existing specialty, you'll have space here to grow meaningfully. Manage risk for our clients to make them stronger for the future. Our Digital Services are designed to enable organisations to leverage our innovative methodologies, technology, and highly experienced professionals to manage their business risks most effectively. Working at BDO offers curious-minded people excellent exposure to all aspects of business strategy, operations and more. We're a dynamic team of internal auditors, accountants, technology, and business transformation experts with disciplines in finance, risk, projects and change, cyber and digital, amongst others. Our extensive network and depth of experience mean we work in a highly client-centric way, focused on providing a collaborative, tailor-made advisory service. Our team helps clients manage their business-critical threats, such as cyber events, and build resilient businesses capable of responding to internal and external events which may interrupt their operations. Being known for exceptional client service in our chosen markets, we put innovation and agility at the heart of everything we do. This is your chance to join a fast-paced, growing team and help shape the future of Digital at BDO. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly skilled and experienced offensive security penetration tester to join our dynamic team. This role involves conducting sophisticated penetration testing and red team engagements across various client systems and applications. The successful candidate will be instrumental in identifying vulnerabilities, enhancing client security postures, and leading initiatives to develop cutting-edge penetration testing methodologies and tools. Clients across industries and geographies, staying at the forefront of knowledge of the threat landscape, cyber defence best practices and regulatory expectations. Requirements : • Strict Requirement: Strong certification in penetration testing such as OSCP (Offensive Security Certified Professional), CTM (Check Team Member), CRT (CREST Registered Tester) and OSWA (Offensive Security Web Attacks) or even better if you have Advanced certifications such as OSEP(OffSec Experience Penetration Tester), CCSAM (CREST Certified Simulated Attack Manager) and CTL (Check Team Leader). • Solid experience in offensive security-whether through professional penetration testing, red teaming, bug bounty work, capture-the-flag competitions, or personal research projects. • Proven ability to deliver impactful client engagements, demonstrating both technical depth and a practical understanding of risk. • Deep knowledge of network protocols, different services, operating systems, different applications and how to break them. • Proficiency in tools such as Metasploit, Burp Suite or other proxies such as Caido or Zap, Nessus, CobaltStrike or other C2 frameworks, etc. Bonus points for building your own tools, contributing to community projects, or chaining techniques creatively. • Excellent problem-solving skills and a passion for ethical hacking that is persistent, curious, and know how to pivot when things do not go as planned. • Experience coding and scripting custom tools in Python, Bash, PowerShell, or anything else that gets the job done. • Ability to communicate technical findings clearly to both technical and non-technical stakeholders. Be yourself It's at the core of the company's and team's vision. You'll be able to truly be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suits them, their teams, and the tasks at hand. At BDO, we're committed to helping you achieve your personal and professional goals. We provide structured development frameworks, resources, and mentorship to support your growth-whether you're looking to deepen a specific skillset or broaden your expertise across domains. We'll align your client engagements with your learning objectives, giving you the chance to apply new skills, explore areas of interest, and gain practical experience. You won't be navigating this alone-our team culture emphasizes peer support, collaboration, and knowledge sharing on every project. We're in it together Mutual support and respect are one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fueling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions. We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
Penetration Tester - 12 Month Contract Job Description: As a Penetration Tester, you will be responsible for conducting comprehensive security assessments to identify vulnerabilities in our systems and applications. You will work closely with our security team to develop strategies to protect our infrastructure from potential threats. Key Responsibilities: Perform penetration testing on networks, applications, and systems. Identify and exploit security vulnerabilities to assess their impact. Develop and execute test plans and methodologies. Document findings and provide detailed reports with remediation recommendations. Collaborate with development and IT teams to implement security improvements. Stay current with the latest security threats, tools, and techniques. Qualifications: Bachelor's degree in Computer Science, Information Security, or a related field. Proven experience as a Penetration Tester or similar role. Strong knowledge of penetration testing tools and methodologies. Familiarity with security frameworks such as OWASP, NIST, and ISO 27001. Proficiency in scripting and programming languages (e.g., Python, Bash). Excellent analytical and problem-solving skills. Relevant certifications (e.g., OSCP, CEH) are a plus. Ready to Apply? If you are reading this and are thinking 'Wow, this sounds like me!', then we want to hear from you! So why are you still reading?!
Mar 18, 2025
Contractor
Penetration Tester - 12 Month Contract Job Description: As a Penetration Tester, you will be responsible for conducting comprehensive security assessments to identify vulnerabilities in our systems and applications. You will work closely with our security team to develop strategies to protect our infrastructure from potential threats. Key Responsibilities: Perform penetration testing on networks, applications, and systems. Identify and exploit security vulnerabilities to assess their impact. Develop and execute test plans and methodologies. Document findings and provide detailed reports with remediation recommendations. Collaborate with development and IT teams to implement security improvements. Stay current with the latest security threats, tools, and techniques. Qualifications: Bachelor's degree in Computer Science, Information Security, or a related field. Proven experience as a Penetration Tester or similar role. Strong knowledge of penetration testing tools and methodologies. Familiarity with security frameworks such as OWASP, NIST, and ISO 27001. Proficiency in scripting and programming languages (e.g., Python, Bash). Excellent analytical and problem-solving skills. Relevant certifications (e.g., OSCP, CEH) are a plus. Ready to Apply? If you are reading this and are thinking 'Wow, this sounds like me!', then we want to hear from you! So why are you still reading?!
Description Our global Fintech client are looking for a Penetration Tester. Responsibilities As a Penetration Tester you will be working with cyber security professionals to protect our clients customers, assets and systems. Scoping and performing mobile, web application, cloud, and infrastructure penetration tests. Automation of security testing, and development of internal tooling, to achieve continuous assurance. Key Skills AWS / GCP Penetration testing 5+ years technical information security experience. Please note this role is hybird working environment and will require someone on site in London 2/3 days a week. Job Title: Penetration Tester Location: London, UK Rate/Salary: (phone number removed) - (phone number removed) GBP Yearly Job Type: Permanent Trading as TEKsystems. Allegis Group Limited, Maxis 2, Western Road, Bracknell, RG12 1RT, United Kingdom. No. (phone number removed). Allegis Group Limited operates as an Employment Business and Employment Agency as set out in the Conduct of Employment Agencies and Employment Businesses Regulations 2003. TEKsystems is a company within the Allegis Group network of companies (collectively referred to as "Allegis Group"). Aerotek, Aston Carter, EASi, Talentis Solutions, TEKsystems, Stamford Consultants and The Stamford Group are Allegis Group brands. If you apply, your personal data will be processed as described in the Allegis Group Online Privacy Notice available at (url removed)> To access our Online Privacy Notice, which explains what information we may collect, use, share, and store about you, and describes your rights and choices about this, please go to (url removed)> We are part of a global network of companies and as a result, the personal data you provide will be shared within Allegis Group and transferred and processed outside the UK, Switzerland and European Economic Area subject to the protections described in the Allegis Group Online Privacy Notice. We store personal data in the UK, EEA, Switzerland and the USA. If you would like to exercise your privacy rights, please visit the "Contacting Us" section of our Online Privacy Notice at (url removed)/en-gb/privacy-notices for details on how to contact us. To protect your privacy and security, we may take steps to verify your identity, such as a password and user ID if there is an account associated with your request, or identifying information such as your address or date of birth, before proceeding with your request. If you are resident in the UK, EEA or Switzerland, we will process any access request you make in accordance with our commitments under the UK Data Protection Act, EU-U.S. Privacy Shield or the Swiss-U.S. Privacy Shield.
Mar 09, 2025
Full time
Description Our global Fintech client are looking for a Penetration Tester. Responsibilities As a Penetration Tester you will be working with cyber security professionals to protect our clients customers, assets and systems. Scoping and performing mobile, web application, cloud, and infrastructure penetration tests. Automation of security testing, and development of internal tooling, to achieve continuous assurance. Key Skills AWS / GCP Penetration testing 5+ years technical information security experience. Please note this role is hybird working environment and will require someone on site in London 2/3 days a week. Job Title: Penetration Tester Location: London, UK Rate/Salary: (phone number removed) - (phone number removed) GBP Yearly Job Type: Permanent Trading as TEKsystems. Allegis Group Limited, Maxis 2, Western Road, Bracknell, RG12 1RT, United Kingdom. No. (phone number removed). Allegis Group Limited operates as an Employment Business and Employment Agency as set out in the Conduct of Employment Agencies and Employment Businesses Regulations 2003. TEKsystems is a company within the Allegis Group network of companies (collectively referred to as "Allegis Group"). Aerotek, Aston Carter, EASi, Talentis Solutions, TEKsystems, Stamford Consultants and The Stamford Group are Allegis Group brands. If you apply, your personal data will be processed as described in the Allegis Group Online Privacy Notice available at (url removed)> To access our Online Privacy Notice, which explains what information we may collect, use, share, and store about you, and describes your rights and choices about this, please go to (url removed)> We are part of a global network of companies and as a result, the personal data you provide will be shared within Allegis Group and transferred and processed outside the UK, Switzerland and European Economic Area subject to the protections described in the Allegis Group Online Privacy Notice. We store personal data in the UK, EEA, Switzerland and the USA. If you would like to exercise your privacy rights, please visit the "Contacting Us" section of our Online Privacy Notice at (url removed)/en-gb/privacy-notices for details on how to contact us. To protect your privacy and security, we may take steps to verify your identity, such as a password and user ID if there is an account associated with your request, or identifying information such as your address or date of birth, before proceeding with your request. If you are resident in the UK, EEA or Switzerland, we will process any access request you make in accordance with our commitments under the UK Data Protection Act, EU-U.S. Privacy Shield or the Swiss-U.S. Privacy Shield.
Job Title: Penetration Tester (Multiple Openings) Location: Bristol, UK (with frequent travel to client sites) Type: Permanent Salary: £55k - £80k We are seeking multiple Penetration Testers to join a leading technology company based in Bristol, UK. The company specialises in cybersecurity consultancy, software development, and bespoke research & development, operating across industries such as telecommunications, finance, defence, rail, and aerospace. Our team plays a key role in safeguarding critical infrastructure and supporting global organisations. As a Penetration Tester, you will be instrumental in evaluating and strengthening our clients' security frameworks. Your role will involve conducting advanced penetration testing, vulnerability assessments, and red teaming exercises to identify and mitigate security risks. Additionally, you will contribute to project management and client engagement. Key Responsibilities: Plan and execute penetration tests on networks, systems, and applications to identify security vulnerabilities. Perform in-depth vulnerability assessments, security audits, and risk analysis, providing clients with detailed reports and actionable recommendations. Collaborate with the red team to simulate real-world cyber threats and evaluate the effectiveness of security measures. Develop and utilise exploit tools to demonstrate potential vulnerabilities and assist clients in understanding associated risks. Required Skills & Qualifications: Bachelor's or master's degree in computer science, Cybersecurity, Information Security, or a related discipline. Relevant certifications: CHECK Team Member, CREST Registered Tester, or equivalent. Minimum of 2 years' experience in penetration testing and vulnerability assessment. Strong understanding of network protocols, operating systems, and security technologies. Proficiency in penetration testing tools such as Metasploit, Burp Suite, Nmap, and others. Preferred Experience: Architecture and end-to-end security reviews. TCP/IP networking (firewalls, routing, etc.). Coding/scripting (Python, Bash, C#, etc.). Internet security. Cryptography and password cracking. Additional Beneficial Skills: Code review. Audit experience (ISO27001, CTAS, CAS(T . Mentorship and leadership capabilities within a technical team. Benefits: Competitive salary with performance-based incentives. Professional development and certification opportunities. A dynamic and collaborative work environment. If you are an experienced Penetration Tester seeking to advance your career, apply today! JBRP1_UKTJ
Feb 21, 2025
Full time
Job Title: Penetration Tester (Multiple Openings) Location: Bristol, UK (with frequent travel to client sites) Type: Permanent Salary: £55k - £80k We are seeking multiple Penetration Testers to join a leading technology company based in Bristol, UK. The company specialises in cybersecurity consultancy, software development, and bespoke research & development, operating across industries such as telecommunications, finance, defence, rail, and aerospace. Our team plays a key role in safeguarding critical infrastructure and supporting global organisations. As a Penetration Tester, you will be instrumental in evaluating and strengthening our clients' security frameworks. Your role will involve conducting advanced penetration testing, vulnerability assessments, and red teaming exercises to identify and mitigate security risks. Additionally, you will contribute to project management and client engagement. Key Responsibilities: Plan and execute penetration tests on networks, systems, and applications to identify security vulnerabilities. Perform in-depth vulnerability assessments, security audits, and risk analysis, providing clients with detailed reports and actionable recommendations. Collaborate with the red team to simulate real-world cyber threats and evaluate the effectiveness of security measures. Develop and utilise exploit tools to demonstrate potential vulnerabilities and assist clients in understanding associated risks. Required Skills & Qualifications: Bachelor's or master's degree in computer science, Cybersecurity, Information Security, or a related discipline. Relevant certifications: CHECK Team Member, CREST Registered Tester, or equivalent. Minimum of 2 years' experience in penetration testing and vulnerability assessment. Strong understanding of network protocols, operating systems, and security technologies. Proficiency in penetration testing tools such as Metasploit, Burp Suite, Nmap, and others. Preferred Experience: Architecture and end-to-end security reviews. TCP/IP networking (firewalls, routing, etc.). Coding/scripting (Python, Bash, C#, etc.). Internet security. Cryptography and password cracking. Additional Beneficial Skills: Code review. Audit experience (ISO27001, CTAS, CAS(T . Mentorship and leadership capabilities within a technical team. Benefits: Competitive salary with performance-based incentives. Professional development and certification opportunities. A dynamic and collaborative work environment. If you are an experienced Penetration Tester seeking to advance your career, apply today! JBRP1_UKTJ
Network Tester SC CLEARED ESSENTIAL We are seeking a highly skilled Network Testing Specialist to lead an extensive testing programme across the companies networks. You will have a strong technical background and proven experience in running comprehensive network testing programmes on complex networks. Key Responsibilities: Develop and execute test strategies, test plans, and test cases/specifications for various testing types including: Performance Testing Security/Penetration Testing Failure Mode Testing Operational Readiness Testing SLA Testing (availability, capacity, etc.) Collaborate with cross-functional teams to ensure thorough testing coverage and effective issue resolution. Analyze test results, identify issues, and provide detailed reports and recommendations. Ensure compliance with industry standards and best practices. Required Skills and Experience: Extensive experience in network testing, particularly on complex networks. Strong technical understanding and expertise in network testing methodologies and tools. Ability to draft detailed test strategies, plans, and specifications. Excellent problem-solving skills and attention to detail. Strong communication and collaboration skills. Security Clearance (SC) is essential
Feb 21, 2025
Contractor
Network Tester SC CLEARED ESSENTIAL We are seeking a highly skilled Network Testing Specialist to lead an extensive testing programme across the companies networks. You will have a strong technical background and proven experience in running comprehensive network testing programmes on complex networks. Key Responsibilities: Develop and execute test strategies, test plans, and test cases/specifications for various testing types including: Performance Testing Security/Penetration Testing Failure Mode Testing Operational Readiness Testing SLA Testing (availability, capacity, etc.) Collaborate with cross-functional teams to ensure thorough testing coverage and effective issue resolution. Analyze test results, identify issues, and provide detailed reports and recommendations. Ensure compliance with industry standards and best practices. Required Skills and Experience: Extensive experience in network testing, particularly on complex networks. Strong technical understanding and expertise in network testing methodologies and tools. Ability to draft detailed test strategies, plans, and specifications. Excellent problem-solving skills and attention to detail. Strong communication and collaboration skills. Security Clearance (SC) is essential
Overview As a Penetration Tester Team Lead, you will be responsible for the day-to-day management of a small team of Penetration Testers, including coaching, guiding, and mentoring. In addition to this, you will perform formal and comprehensive penetration testing assessments, including producing full written reports to appropriate standards and within agreed deadlines. Furthermore, you will support recruitment, quality assurance of reports, and client pre-engagement activities such as scoping and proposal drafting. Additional management time of one day a week will be assigned to help support management activities. Supervisory Responsibilities The Penetration Tester Team Lead will be responsible for the day-to-day management of a team of Penetration Testers, including coaching, guiding, and mentoring. Responsibilities Manage, coach, guide, and mentor a team of Penetration Testers; Complete performance reviews, including 1-2-1s, and support with appropriate follow-up actions; Work with the Penetration Testing Managers to support continuous improvement, efficiency, and effectiveness of the team; Support the Service Delivery team in assigning penetration testing projects; Assist the Marketing team with content development (including blogs, social media posts, and articles) to raise the profile of Bulletproof's Penetration Testing services; Support the Sales & Pre-sales teams with client pre-engagement interactions, including scoping call activities and proposal drafting; Assist in the recruitment pipeline, reviewing candidate submissions, CTF results, and conducting interviews; Manage the QA process to ensure high-quality client reports are delivered in accordance with applicable Service Level Agreements (SLA); Perform formal and comprehensive application, infrastructure, and other penetration testing assessments as required; Conduct vulnerability assessments and provide findings with remediation actions; Deliver well-written, concise, technical and non-technical reports in English; Manage and deliver penetration testing project activities within deadlines; Perform any other appropriate job duties in line with the associated skill and experience of the post holder. Skills and Experience Required Proven industry experience in penetration testing; Previous management or mentoring experience is advantageous but not essential as full support will be provided; Strong understanding of multiple penetration testing fields & frameworks, including OWASP, PTES, and other methodologies; Experience testing web and mobile applications (iOS/Android); Experience reviewing infrastructure and associated technologies (such as AD & network controls/devices); Experience reviewing cloud platforms; Experience preparing and launching social engineering campaigns; Knowledge of how modern solutions are designed, developed, and deployed across different platforms; Ability to program or script in your preferred language; Relevant security qualifications (such as OSCP, OSCE, CREST CRT, CREST CCT); Good knowledge and understanding of network and OS principles; Good knowledge of various operating systems; Good knowledge of virtualization. Personal Attributes Excellent spoken and written English communication skills with strong attention to detail and accuracy; A passion for security and networks; Analytical and problem-solving skills with a can-do attitude and the ability to think laterally and creatively; Self-motivated with a commitment to continued development; Ability to work independently and as part of a team; Influencing and negotiation skills with the ability to build relationships at all levels; Willingness to learn. Benefits 25 days annual holiday; An additional day's annual holiday for your birthday; Company Pension contribution; Subsidized gym membership; Perkbox employee benefits platform; Frequent team events; Private Healthcare (individual cover only); Learning Allowance Benefit - a reimbursable benefit of £100 per annum for personal career development; Flexible working policy. Company Overview Bulletproof is a trusted provider of innovative cyber security and people-powered solutions. Our cyber security services are the best way to stay ahead of hackers, take control of infrastructure, and protect business-critical data. We provide a full spectrum of cyber security services including CREST-certified penetration testing, 24/7 threat monitoring, compliance support, and security training to help organizations protect against today's evolving threat landscape. Please note that as part of the recruitment process, a criminal records check will be carried out by an authorized third party.
Feb 20, 2025
Full time
Overview As a Penetration Tester Team Lead, you will be responsible for the day-to-day management of a small team of Penetration Testers, including coaching, guiding, and mentoring. In addition to this, you will perform formal and comprehensive penetration testing assessments, including producing full written reports to appropriate standards and within agreed deadlines. Furthermore, you will support recruitment, quality assurance of reports, and client pre-engagement activities such as scoping and proposal drafting. Additional management time of one day a week will be assigned to help support management activities. Supervisory Responsibilities The Penetration Tester Team Lead will be responsible for the day-to-day management of a team of Penetration Testers, including coaching, guiding, and mentoring. Responsibilities Manage, coach, guide, and mentor a team of Penetration Testers; Complete performance reviews, including 1-2-1s, and support with appropriate follow-up actions; Work with the Penetration Testing Managers to support continuous improvement, efficiency, and effectiveness of the team; Support the Service Delivery team in assigning penetration testing projects; Assist the Marketing team with content development (including blogs, social media posts, and articles) to raise the profile of Bulletproof's Penetration Testing services; Support the Sales & Pre-sales teams with client pre-engagement interactions, including scoping call activities and proposal drafting; Assist in the recruitment pipeline, reviewing candidate submissions, CTF results, and conducting interviews; Manage the QA process to ensure high-quality client reports are delivered in accordance with applicable Service Level Agreements (SLA); Perform formal and comprehensive application, infrastructure, and other penetration testing assessments as required; Conduct vulnerability assessments and provide findings with remediation actions; Deliver well-written, concise, technical and non-technical reports in English; Manage and deliver penetration testing project activities within deadlines; Perform any other appropriate job duties in line with the associated skill and experience of the post holder. Skills and Experience Required Proven industry experience in penetration testing; Previous management or mentoring experience is advantageous but not essential as full support will be provided; Strong understanding of multiple penetration testing fields & frameworks, including OWASP, PTES, and other methodologies; Experience testing web and mobile applications (iOS/Android); Experience reviewing infrastructure and associated technologies (such as AD & network controls/devices); Experience reviewing cloud platforms; Experience preparing and launching social engineering campaigns; Knowledge of how modern solutions are designed, developed, and deployed across different platforms; Ability to program or script in your preferred language; Relevant security qualifications (such as OSCP, OSCE, CREST CRT, CREST CCT); Good knowledge and understanding of network and OS principles; Good knowledge of various operating systems; Good knowledge of virtualization. Personal Attributes Excellent spoken and written English communication skills with strong attention to detail and accuracy; A passion for security and networks; Analytical and problem-solving skills with a can-do attitude and the ability to think laterally and creatively; Self-motivated with a commitment to continued development; Ability to work independently and as part of a team; Influencing and negotiation skills with the ability to build relationships at all levels; Willingness to learn. Benefits 25 days annual holiday; An additional day's annual holiday for your birthday; Company Pension contribution; Subsidized gym membership; Perkbox employee benefits platform; Frequent team events; Private Healthcare (individual cover only); Learning Allowance Benefit - a reimbursable benefit of £100 per annum for personal career development; Flexible working policy. Company Overview Bulletproof is a trusted provider of innovative cyber security and people-powered solutions. Our cyber security services are the best way to stay ahead of hackers, take control of infrastructure, and protect business-critical data. We provide a full spectrum of cyber security services including CREST-certified penetration testing, 24/7 threat monitoring, compliance support, and security training to help organizations protect against today's evolving threat landscape. Please note that as part of the recruitment process, a criminal records check will be carried out by an authorized third party.
A Scottish-based Cyber Security Consultancy are looking for a Lead Cyber Assessor (or Penetration Tester) to join their remote team as they enter a really exciting period of growth - Fully Remote working from within the UK available. They've been operating for a couple of years now and are already starting to establish themselves in their industry, they currently trade with over 160 clients worldwide in cyber consultancy and Cyber Essentials Plus assessments. They have pretty big growth plans for the next few years, so it's a really exciting time to join. You'll work alongside the Managing Director and will be given a lot of responsibility in your role, as you'll be tasked to work directly with their extensive client list to fully understand their needs from discovery to delivery. With the growth plans the organisation have, and their current set-up it's genuinely a great opportunity to really develop your skills and experience within the security world, and you'll be in an ideal position for pretty rapid career progression over the next few years. A big focus of this role involves engaging directly with organisations to carry out Cyber Essentials Plus assessments, Security Audits and Penetration Testing to assess their security foundation and identify areas of vulnerability. You'll then be tasked to provide effective recommendations based on your knowledge and experience which would improve their security posture. You'll ideally have prior experience with most of the following; Performing Cyber Essentials Plus (CE+) Assessments Penetration Testing (Burp Suite, Metasploit, Nmap, Nessus etc) Producing Reports on Security Vulnerabilities and Providing Recommendations Advising Clients on Ways to Achieve/Maintain Cyber Essentials and Cyber Essentials Plus Certifications What would really make someone stand out for this position is Cyber Essentials certifications (CSTM/CSTL, CEH, OSCP etc ) as it's such a big part of the role, they're also more than happy to help employee's progress their expertise in this area with further accreditation. This role would really suit an ambitious individual that's looking for a challenging role where they can ultimately take ownership of full projects pretty early on and drive these independently. They're able to offer fully remote working for this role, providing you're based within the UK (and planning to stay within the UK). They'll provide you with all the necessary equipment needed to help you thrive and perform at your very best, and they're keen to maintain a healthy work/life balance. In return they're able to offer asalary of £35-40k + benefits for this role, with the opportunity for career progression and security accreditations. They have pretty ambitions plans for the next few years, as this role is a key part of their strategy for growth - so they'll be lots of opportunities to grow here as well. If you're keen to find out more please apply, and feel free to reach out to Lewis Paterson at Cathcart Technology on LinkedIn or email to discuss further. JBRP1_UKTJ
Feb 20, 2025
Full time
A Scottish-based Cyber Security Consultancy are looking for a Lead Cyber Assessor (or Penetration Tester) to join their remote team as they enter a really exciting period of growth - Fully Remote working from within the UK available. They've been operating for a couple of years now and are already starting to establish themselves in their industry, they currently trade with over 160 clients worldwide in cyber consultancy and Cyber Essentials Plus assessments. They have pretty big growth plans for the next few years, so it's a really exciting time to join. You'll work alongside the Managing Director and will be given a lot of responsibility in your role, as you'll be tasked to work directly with their extensive client list to fully understand their needs from discovery to delivery. With the growth plans the organisation have, and their current set-up it's genuinely a great opportunity to really develop your skills and experience within the security world, and you'll be in an ideal position for pretty rapid career progression over the next few years. A big focus of this role involves engaging directly with organisations to carry out Cyber Essentials Plus assessments, Security Audits and Penetration Testing to assess their security foundation and identify areas of vulnerability. You'll then be tasked to provide effective recommendations based on your knowledge and experience which would improve their security posture. You'll ideally have prior experience with most of the following; Performing Cyber Essentials Plus (CE+) Assessments Penetration Testing (Burp Suite, Metasploit, Nmap, Nessus etc) Producing Reports on Security Vulnerabilities and Providing Recommendations Advising Clients on Ways to Achieve/Maintain Cyber Essentials and Cyber Essentials Plus Certifications What would really make someone stand out for this position is Cyber Essentials certifications (CSTM/CSTL, CEH, OSCP etc ) as it's such a big part of the role, they're also more than happy to help employee's progress their expertise in this area with further accreditation. This role would really suit an ambitious individual that's looking for a challenging role where they can ultimately take ownership of full projects pretty early on and drive these independently. They're able to offer fully remote working for this role, providing you're based within the UK (and planning to stay within the UK). They'll provide you with all the necessary equipment needed to help you thrive and perform at your very best, and they're keen to maintain a healthy work/life balance. In return they're able to offer asalary of £35-40k + benefits for this role, with the opportunity for career progression and security accreditations. They have pretty ambitions plans for the next few years, as this role is a key part of their strategy for growth - so they'll be lots of opportunities to grow here as well. If you're keen to find out more please apply, and feel free to reach out to Lewis Paterson at Cathcart Technology on LinkedIn or email to discuss further. JBRP1_UKTJ
