Penetration Tester

Our client is a CREST-accredited Cybersecurity company who are looking for a strategic and detail-oriented Cybersecurity Consultant to join their growing team. If you’re passionate about offensive security and thrive on uncovering vulnerabilities before attackers do, we want to hear from you.

As a Cybersecurity Consultant specializing in Vulnerability Assessment and Penetration Testing (VAPT), you will work closely with clients to evaluate the security of their infrastructure, applications, and environments—delivering clear, actionable insights to strengthen their cyber posture.

• Conduct in-depth penetration testing and vulnerability assessments for web apps, mobile apps, APIs, infrastructure, and cloud environments.
• Simulate real-world attack scenarios and identify exploitable vulnerabilities using manual and automated methods.
• Prepare detailed and client-friendly technical reports with prioritised risk remediation recommendations.
• Participate in client debrief sessions to communicate findings, answer technical queries, and advise on security hardening.
• Continuously update your skillset and toolset based on emerging threats and vulnerabilities.
• Assist in refining internal testing methodologies and contributing to knowledge sharing sessions.

• Professional certifications: OSCP is required; CREST CRT (or equivalent) is highly preferred.
• Ideally 2 years of hands-on experience in VAPT engagements (web, infra, mobile, APIs).
• Strong working knowledge of common security testing tools (e.g., Burp Suite, Nmap, Metasploit, etc.).
• Ability to explain complex vulnerabilities and exploit scenarios to both technical and non-technical audiences.
• Excellent report writing and communication skills in English.
• Team player with the ability to also work independently on assignments.
• Bonus Experience - Red Teaming, threat modelling, or secure code review is a plus.