This is a remote role open to candidates based anywhere in the UK, offering the opportunity to work across a diverse range of client environments β from enterprise networks to public sector systems.
Youβll be responsible for delivering hands-on penetration testing engagements, identifying vulnerabilities through systematic and innovative testing, and translating technical findings into meaningful business insights. The role offers strong progression opportunities, access to industry-recognised training, and involvement in advanced security projects.
The organisation is a leading UK-based managed service provider, delivering a comprehensive range of end-to-end technology solutions across Connectivity, Cloud, Collaboration, and Cyber Security. All services are designed, implemented, and supported by in-house specialists using a privately owned, state-of-the-art national infrastructure.
What Youβll Be Doing:
- Conduct end-to-end penetration testing across infrastructure, web applications, and internal networks
- Lead or support security testing engagements and deliver concise, high-quality reports
- Translate technical findings into clear business impact and actionable recommendations
- Communicate effectively with both technical and non-technical stakeholders
- Stay up to date with current vulnerabilities, exploits, and industry best practices
- Contribute to internal development of tools, research, and process improvement initiatives
What Weβre Looking For:
- 1β2 years of hands-on experience in manual penetration testing (infrastructure and/or web applications)
- Strong understanding of TCP/IP, networking concepts, and web application architecture
- Familiarity with tools such as Burp Suite, Nmap, Metasploit, or similar
- Excellent written and verbal communication skills, including report writing and client presentations
- Eligibility for SC Clearance (active clearance is a plus)
Nice to Have:
- Working towards or holding a CREST qualification (CRT, CCT, or equivalent)
- Experience conducting security build reviews across common operating systems (e.g. Windows, Linux)
- Scripting or programming experience (e.g. Python, PowerShell, or Bash)
- Knowledge of MITRE ATT&CK, TTPs, and adversary simulation techniques
- Awareness of broader threat environments and current industry trends
What Youβll Get:
- Competitive salary (up to Β£45,000, depending on experience)
- Hybrid or remote working flexibility within the UK
- Funded training and certification support (CREST, OSCP, or similar)
- Opportunities to progress into red teaming, advanced testing, and leadership roles
Supportive, collaborative environment with a strong focus on professional development
