Senior Penetration Tester

Do you want to tackle the biggest questions in finance with near infinite compute power at your fingertips?

G-Research is a leading quantitative research and technology firm, with offices in London and Dallas.

We are proud to employ some of the best people in their field and to nurture their talent in a dynamic, flexible and highly stimulating culture where world-beating ideas are cultivated and rewarded.

This is a role based in our new Soho Place office - opened in 2023 - in the heart of Central London and home to our Research Lab.

The role

We're looking for a Security Assessment Specialist to join our growing Cyber Security team, reporting into the Security Assessment Manager.

In this role, you'll lead and conduct penetration tests and vulnerability assessments across a wide range of internal systems and security controls. Your work will directly strengthen our overall security posture through continuous testing, actionable insights and collaboration on remediation strategies.

Key responsibilities of the role include:

• Performing in-depth penetration testing across a variety of technologies, including Kubernetes, Jenkins, and Windows Domain Services
• Delivering practical, impactful remediation advice to Control Owners based on identified vulnerabilities
• Supporting Business and Application Owners in assessing and improving the effectiveness of their security controls
• Providing technical consulting and assurance to Risk, Compliance, and Detection Engineering teams - including control assessments and configuration reviews
• Maintaining and enhancing the team's operational tooling, automation, and system integrations
• Mentoring and supporting less experienced team members, fostering knowledge sharing and growth

Who are we looking for?

The ideal candidate will have the following skills and experience:

• Proven expertise across the full penetration testing lifecycle, from scoping and execution to reporting and stakeholder debriefs
• Deep understanding of vulnerability assessment practices, including effective remediation strategies for both infrastructure and application-level security
• Strong background in technical security roles across diverse environments; familiarity with DevOps technologies is a plus
• Experience validating the effectiveness of security controls through both manual and automated approaches
• Engineering experience, particularly in building automation and tooling to streamline team output
• Proficiency in development and scripting tools commonly used in DevSecOps, including Python, Jenkins and Ansible
• Relevant security certifications such as OSCP (required), CRT or OSEP
• Strong communication and interpersonal skills, with an emphasis on clear and concise written output

Why should you apply?

• Highly competitive compensation plus annual discretionary bonus
• Lunch provided (via Just Eat for Business) and dedicated barista bar
• 30 days' annual leave
• 9% company pension contributions
• Informal dress code and excellent work/life balance
• Comprehensive healthcare and life assurance
• Cycle-to-work scheme
• Monthly company events

G-Research is committed to cultivating and preserving an inclusive work environment. We are an ideas-driven business and we place great value on diversity of experience and opinions.

We want to ensure that applicants receive a recruitment experience that enables them to perform at their best. If you have a disability or special need that requires accommodation please let us know in the relevant section