Enable job alerts via email!
Penetration Tester
Barclay Simpson
United Kingdom
Remote
GBP 60,000 - 80,000
Full time
Job summary
A leading cybersecurity firm in the United Kingdom is seeking an experienced Penetration Tester to conduct security assessments on generative AI systems and traditional infrastructures. The role involves performing red teaming, threat modeling, and evaluating vulnerabilities in AI-driven applications. Candidates should have hands-on experience in penetration testing and be able to collaborate with product and AI teams to improve system security. This position offers a dynamic work environment and opportunities for professional growth.
Qualifications
- Hands-on experience in penetration testing.
- Familiarity with AI-driven applications and systems.
- Ability to create detailed reports for stakeholders.
Responsibilities
- Conduct penetration tests on various systems including AI-integrated ones.
- Perform red teaming and threat modeling exercises targeting AI models.
- Evaluate AI systems for vulnerabilities and data leakage.
Skills
Tools
Penetration Tester needed with hands-on experience in testing Generative AI systems, LLMs, or AI-driven bots. In this role, you will lead and support security assessments targeting traditional infrastructure and AI-powered systems, including prompt injection testing, model exploitation, adversarial ML, and AI supply chain vulnerabilities. You will collaborate with product, data science, and AI teams to identify and mitigate security weaknesses in novel AI-driven applications.
Key Responsibilities
- Conduct penetration tests on web applications, APIs, networks, and infrastructure, including AI-integrated systems.
- Perform red teaming and threat modelling exercises specifically targeting AI models (eg, LLMs, chatbot interfaces, vector databases, and orchestration frameworks like LangChain or AutoGen).
- Evaluate AI systems for prompt injection vulnerabilities, data leakage, model abuse, prompt chaining issues, and adversarial inputs.
- Work with development and AI teams to build secure-by-design systems, offering actionable remediation guidance.
- Conduct testing of model endpoints for issues such as insecure output handling, unauthorized access to functions, or data poisoning.
- Develop custom testing tools or use existing frameworks (eg, LLM Guardrails, OpenAI evals, or adversarial attack libraries like TextAttack or IBM’s ART).
- Create detailed reports with findings, impact analysis, and recommendations for technical and non-technical stakeholders.
- Stay updated on the latest threats, vulnerabilities, and mitigations affecting generative AI systems and machine learning platforms.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
Follow us
