Senior Security Consultant - Penetration Testing

Posted 8 days 2 hours ago by CyberCX Pty Ltd

Permanent
Full Time
Other
London, United Kingdom
Job Description
Overview

Senior Security Consultant - Penetration Testing. Perform advanced penetration tests on networks, applications, and systems, identifying and exploiting vulnerabilities, and reporting findings. This role is a hybrid position based in London.

Responsibilities
  • Plan and execute advanced security reviews on various systems (e.g., applications, infrastructure, cloud, networks).
  • Discover security weaknesses and perform technical analysis to understand the impact of exploits.
  • Develop comprehensive reports detailing identified vulnerabilities, exploitation procedures, associated risks, and clear, actionable remediation recommendations.
  • Provide technical guidance and mentorship to other testers, contributing to their growth and expertise.
  • Work with clients, development teams, and infrastructure teams to understand business context and integrate security into projects.
  • Research emerging cyber threats, tools, and techniques to ensure testing remains representative of the current threat landscape.
  • Contribute to refining internal testing methodologies and developing or leveraging tools for automated tasks.
  • Present technical findings and risks to both technical and non-technical audiences, including senior management.
About you
  • Deep knowledge of penetration testing methodologies, tools (e.g., Burp Suite, Nmap, Nessus, Kali Linux), network protocols (TCP/IP, OSI), and operating systems.
  • Proficiency in scripting languages like Python for developing automated solutions.
  • Strong ability to analyze complex systems, identify vulnerabilities, and develop effective solutions.
  • Excellent written and verbal communication skills for creating clear reports and conveying complex information to various audiences.
  • Proven experience leading penetration tests and managing engagements.
  • Familiarity with standards like OWASP Top 10 and SANS Top 25.
  • A degree in a relevant field like computer science or information technology is often preferred, with certifications like OSCP being highly valued.
What's in it for you?
  • Attractive salary and employee benefits package
  • Once-in-a-career growth opportunities - unique chance to be part of a high-growth business
  • Work with cyber security thought leaders to deliver world-class services
  • A dynamic, independent environment where you're given flexibility to do your best work
  • Ongoing personal development and ongoing career training