The Penetration Tester will be responsible for assessing the security of the organisation's IT infrastructure, identifying vulnerabilities and providing actionable recommendations to mitigate risks. This role involves conducting penetration tests on networks, servers, cloud environments and other critical infrastructure components to ensure they are resilient against cyber threats.
*2 days onsite each week are required in the London office.*
Skills:
1. Strong understanding of network protocols, firewalls, VPNs, cloud security and operating systems (Windows, Linux, macOS).
2. Experience with penetration testing tools such as Nmap, Metasploit, Burp Suite, Nessus, Kali Linux, Wireshark, etc.
3. Proficiency in manual testing techniques beyond automated scanners.
4. Knowledge of cloud security testing (AWS, Azure, GCP).
5. Familiarity with Active Directory security assessments and privilege escalation techniques.
6. Understanding of OWASP, MITRE ATT&CK, CIS benchmarks and NIST security frameworks.
7. Scripting and automation experience using Python, PowerShell, Bash, or similar languages.
8. Strong analytical and problem-solving skills with an offensive security mindset.
9. Exce...