Enable job alerts via email!

Mid-Level Penetration tester

JR United Kingdom

London

On-site

GBP 40,000 - 70,000

Full time

3 days ago

Be an early applicant

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

A dynamic security consultancy based in London is seeking a mid-level Penetration Tester to join their collaborative team. This role provides a unique opportunity to conduct comprehensive penetration tests, mentor junior staff, and develop your skills in a supportive environment. A competitive salary, ongoing professional development, and opportunities to attend industry events are among the benefits offered.

Benefits

Autonomy and ownership in projects

Ongoing professional development

Access to industry events and training

Flexible hybrid working post-probation

Supportive team culture

Qualifications

Proficient in penetration testing tools and methodologies.
Ability to manage multiple projects independently.
Strong verbal and written communication skills for client engagements.

Responsibilities

Conduct penetration testing across various platforms (web, mobile, cloud).
Create technical reports and deliver findings to clients.
Mentor junior team members and contribute to team projects.

Skills

Knowledge of OWASP methodologies

Offensive testing techniques

Client communication skills

Analytical skills

Strong organisational skills

Tools

Burp Suite

Kali

Nmap

Nessus

Qualys

Metasploit

Social network you want to login/join with:

An exciting opportunity for a mid-level Penetration Tester to join a dynamic and collaborative security consultancy based in London. This role is ideal for a proactive individual with a hacker’s mindset and broad security testing experience across applications, networks, cloud platforms, and more.

You'll be a key player in delivering high-quality penetration tests while also supporting client advisory, team development, and process improvement.

What’s in it for you?

Autonomy and ownership in conducting diverse penetration testing engagements.

Ongoing professional development with access to industry events and training.

A positively charged work environment with flexibility for hybrid working post-probation.

Responsibilities:

Conduct web, mobile, API, infrastructure, cloud, and wireless penetration testing.

Create detailed technical reports and deliver test findings directly to clients.

Provide remediation advice and post-assessment consultancy.

Contribute to internal testing methodologies and Red Team/social engineering activities.

Mentor junior team members and support collaborative delivery of projects.

Occasionally support the creation of marketing materials such as research papers and articles.

Skills / Must have:

Strong knowledge of OWASP methodologies and offensive testing across black/grey/white-box approaches.

Proficiency in tools like Burp Suite, Kali, Nmap, Nessus, Qualys, Metasploit.

Familiarity with cloud platform security testing (AWS, Azure, GCP).

Understanding of mobile security (Android & iOS), networking protocols, and the OSI model.

Excellent verbal and written communication skills, especially for client-facing engagements.

Highly organised, analytical, and able to manage multiple projects independently.

Ability to explain technical risks to non-technical stakeholders and C-level executives.

Desirable (“nice to have”) Skills:

Experience with programming, databases, and IoT security.

Exposure to CI/CD security, Docker/container security, and AI/LLM testing.

Hands-on experience with Red Teaming tools (e.g., Cobalt Strike) and social engineering.

Familiarity with bug bounty platforms and vulnerability disclosure best practices.

Competitive salary with regular performance reviews

Annual training and personal development plan

Access to conferences and professional events

Supportive and knowledgeable team culture

Get your free, confidential resume review.

or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.