Penetration Tester - Infrastructure (UK-Based, Remote)
Check all associated application documentation thoroughly before clicking on the apply button at the bottom of this description.
We are currently recruiting for an experienced Penetration Tester specialising in Infrastructure Testing on behalf of a leading UK-based security consultancy. This company is renowned for its innovative approach to security, providing ongoing vulnerability assurance and continuous threat management through its advanced portal solution, beyond traditional point-in-time assessments.
The Role:
As an Infrastructure Penetration Tester, you will be responsible for conducting thorough and formal assessments, delivering high-quality written reports that meet both industry standards and client deadlines. You will also support pre-engagement activities such as scoping projects and drafting proposals. Research into vulnerabilities within infrastructure and applications will be a key part of your role, with a commitment to responsible disclosure practices.
Key Responsibilities:
Conduct Comprehensive Testing: Perform formal, in-depth penetration tests focused on infrastructure and occasionally other areas.
Reporting: Deliver detailed, well-structured technical and non-technical reports in English.
Vulnerability Assessments: Identify vulnerabilities and provide actionable remediation recommendations.
Pre-Engagement Support: Assist in scoping client projects and drafting proposals to ensure clear and accurate planning.
Project Management: Manage penetration testing projects, ensuring timely completion within deadlines.
Research & Collaboration: Investigate new vulnerabilities and share findings with the team while adhering to responsible disclosure standards.
Mentorship: Provide guidance to junior team members and graduates, where appropriate.
Key Requirements:
Experience: Demonstrated experience in Infrastructure Penetration Testing, with expertise in additional testing areas.
Technical Knowledge: Strong proficiency in both Windows and Linux environments, with a deep understanding of Active Directory, wireless technologies, and multiple operating systems.
Cloud Experience: Experience in assessing cloud and hybrid environments, particularly with AWS and Azure .
Programming Skills: Proficiency in programming or scripting in your preferred language.
Certifications: Security certifications such as OSCP, CREST CRT, OSEP, CCT INF, or CTM are highly desirable
Virtualisation Knowledge: Solid understanding of virtualisation technologies.
Additional Details:
Location: Remote (UK-based), with occasional visits to client sites and the company office as required.
Eligibility: Candidates must be based in the UK and have the right to work, as sponsorship is not available for this role.
This is a fantastic opportunity for a skilled Penetration Tester with a passion for Cyber Security to join a forward-thinking consultancy. If youre seeking a challenging and rewarding role with opportunities for growth, wed love to hear from you!