Penetration Tester

Direct message the job poster from Queen Square Recruitment

Our client, a leading global organisation is seeking a skilled Penetration Tester to join its Cyber Security team. You will have the opportunity to work across diverse security engagements, from cloud and network testing to red-team exercises, and collaborate with technical and executive stakeholders. You will perform in-depth security assessments across multiple domains, including network, web, cloud, wireless, social engineering, and physical security.

You will lead engagements, deliver actionable findings, and advise on remediation, helping the organisation enhance its security posture and resilience.

• Lead penetration testing engagements from scoping through execution and reporting while adhering to scope and deadlines.
• Conduct penetration testing across Network, Web Applications, APIs, Cloud Security (AWS, Azure, GCP, OCI), Thick Client Applications, Wireless, Social Engineering, and Physical Security.
• Perform Red Team assessments to identify gaps impacting the organisation’s security posture.
• Identify and exploit vulnerabilities across diverse systems and environments.
• Analyse penetration test results and produce reports detailing findings, exploitation techniques, risks, and actionable recommendations.
• Communicate complex security concepts effectively to technical and non-technical audiences, including executives.
• Perform technical quality reviews and participate in technical conversations with clients.
• Maintain awareness of OWASP Top 10 and SANS Top 25 vulnerabilities and communicate mitigation strategies to development teams.
• Utilize penetration testing and vulnerability assessment tools such as Burp Suite, Nessus, Nmap, Kali Linux
  , Cobalt Strike, and OSINT frameworks.
• Minimum 4+ years of hands‑on Penetration Testing experience
  , including Cloud Penetration Testing (AWS, Azure, GCP, Oracle Cloud).
• OSCP certified or CREST Registered Penetration Tester (CRT) minimum.
• Proficient with penetration testing tools such as Cobalt Strike, Caldera, Atomic Red Team, Pentera, Nessus, Burp, OSINT
  .
• Strong understanding of software testing methodologies, manual and automated testing techniques.
• Proven ability to write clear, concise test plans and security reports.
• Strong problem‑solving and debugging skills.
• Excellent communication and collaboration skills.
• Familiarity with the Software Development Life Cycle (SDLC).
• Demonstrated ability to deliver high‑quality security solutions and actionable findings.
• Bachelor’s degree in Computer Science, Cybersecurity, or related field
  ;
  Master’s preferred.
• 8+ years’ experience in Information Security, with focus on Technical Cyber Security.
• Minimum 5 years’ experience in network and cloud security environments
  .
• Certifications such as CISSP, CCSP, OSCP, SANS or equivalent.
• Cloud‑specific certifications (AWS, GCP, Azure, OCI) highly desirable.

If this is relevant to your experience, please apply with your CV and we will be in touch.

Mid‑Senior level

Contract

Information Technology

IT Services and IT Consulting