Enable job alerts via email!
Infrastructure Penetration Tester
Digital Waffle
City Of London
Hybrid
GBP 68,000 - 80,000
Full time
Job summary
A growing security firm in London seeks an experienced Senior Penetration Tester to enhance security posture through infrastructure assessments. The role offers a salary of up to GBP80,000 based on experience and a performance bonus. You will lead penetration tests, mentor junior staff, and contribute to security methodologies. Hybrid working is available, with London as the preferred base.
Benefits
Qualifications
- 3-5+ years of professional penetration testing experience.
- Strong understanding of enterprise infrastructure and networking.
- Proficiency with various security testing tools.
Responsibilities
- Deliver and oversee network and infrastructure penetration tests.
- Conduct vulnerability exploitation and privilege escalation.
- Produce high-quality reports with actionable remediation guidance.
Skills
Tools
We are seeking an experienced Senior Penetration Tester with a strong background in infrastructure security testing to join a growing offensive security team. The ideal candidate will have deep technical expertise, the ability to lead and independently deliver complex engagements, and a passion for uncovering and exploiting vulnerabilities across enterprise environments. You will play a key role in strengthening the organisation's security posture by conducting infrastructure–focused assessments, mentoring junior testers, and influencing remediation strategies.
- Deliver internal and external network and infrastructure penetration tests, including on–premises and cloud–hosted environments
- Perform testing of Windows & Linux infrastructure, Active Directory, network services, and security appliances
- Conduct vulnerability exploitation, privilege escalation, and lateral movement to demonstrate full attack paths
- Lead small engagement teams and oversee delivery quality, documentation, and client communication
- Produce high–quality, concise, and risk–aligned reports with actionable remediation guidance
- Support scoping calls, stakeholder workshops, and post–engagement debriefs
- Contribute to tooling, methodology enhancement, and internal research initiatives
- Stay up–to–date with emerging vulnerabilities, exploits, and attacker techniques
- 3–5+ years' professional penetration testing/offensive security experience
- Strong understanding of enterprise infrastructure, AD security, networking, and protocols
- Proficiency with tools such as Nmap, Nessus, Metasploit, BloodHound, Burp Suite, Kali/Linux toolsets
- Solid track record of delivering infrastructure pentests end–to–end
- Excellent communication skills, including producing business–focused reporting
- CHECK Team Member (CSTM) or CHECK Team Leader (CTL)
- CREST CRT/CCT, OSCP, OSEP, or equivalent recognised industry certifications
- Experience in cloud infrastructure testing (Azure/AWS), desirable but not essential
- SC or DV clearance beneficial (or eligibility to obtain it)
- Salary up to GBP80,000 depending on experience + performance bonus
- Strong personal development support – certifications funded and continuous training
- Defined career progression into CTL or Red Team positions
- Hybrid working with London as the preferred base
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
