Penetration Tester

Get AI-powered advice on this job and more exclusive features.

This range is provided by Eames Consulting. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.

Direct message the job poster from Eames Consulting

Location: Fully Remote

Contract: Initial 2-month contract, with potential for extension

Job Overview:

We are looking for a highly skilled and experienced IT Penetration Tester to join our team on an initial 2-month contract basis. As a Pen Tester, you will be responsible for performing security assessments across a wide range of IP addresses, identifying vulnerabilities, and helping to improve our client’s security posture. The role is fully remote and offers a competitive rate of £450 per day outside of IR35.

• Conduct comprehensive penetration testing on a wide variety of systems, applications, and networks (both internal and external IP addresses).
• Perform manual and automated testing, identifying security flaws, vulnerabilities, and weaknesses.
• Provide in-depth analysis of findings and offer recommendations to mitigate risks.
• Write clear, concise, and professional penetration testing reports that are understandable to both technical and non-technical stakeholders.
• Work with internal teams and clients to communicate vulnerabilities, testing results, and remediation plans.
• Ensure compliance with industry best practices and frameworks for penetration testing.
• Maintain up-to-date knowledge of emerging security threats and trends.

• CREST accreditation is a must (CREST Practitioner or higher).
• Proven experience in performing penetration tests across a broad range of systems (web applications, network infrastructure, cloud environments, etc.).
• Strong knowledge of penetration testing tools (e.g., Burp Suite, Nessus, Metasploit, etc.) and methodologies.
• Excellent written and verbal communication skills, with the ability to produce detailed, actionable reports.
• Strong understanding of security vulnerabilities and risk mitigation techniques.
• Experience testing a wide variety of IP addresses and network infrastructures.
• Ability to work independently in a fully remote role, managing time and priorities effectively.
• Knowledge of additional security certifications (e.g., OSCP, CEH, CISSP, etc.) is beneficial.
• Experience with scripting languages such as Python, Bash, or PowerShell is a plus.
• Familiarity with cloud security (AWS, Azure, Google Cloud) is advantageous.

Mid-Senior level

Contract

Information Technology

Technology, Information and Media and Computer and Network Security