Penetration Tester

full time


A Penetration Tester with a strong skill set

Location: Nottingham
70-80k (potentially higher for the right candidate) great benefits

Ideal candidate: A solid Penetration Tester who has a solid history of penetration testing/ security assessments. You will have excellent communication skills and be able to relate information in a technical and non technical manner.

Overview of the role!

You will be reporting into the UK Head of Application Security, there is the potential of 2/3 days remote working within the role, their will also be travel to the London office.

The job role:

  • Delivering penetration testing/security assessment
  • Close collaboration with the business throughout remediation which will include influencing stakeholders and delivery teams, prioritising the security activities and issue remediation
  • Present findings, risks and conclusions to both technical and non technical audiences
  • Establish productive and effective relationships across the global cyber organisation and technology departments.
  • Promote application security awareness and standards through training, mentoring and vulnerability demos
  • Establish and earn a reputation for being a proactive leader and positive disruptor.


  • Be able to mentor and communicate goals as well as corporate initiatives and drive results
  • Superb interpersonal and leadership skills
  • Strong verbal and written communication skills.
  • Good working knowledge and experience within securing and developing web applications, API and mobile app security testing frameworks and methodologies
  • Extensive pen testing/ application security is essential
  • Strong knowledge of application security best practises (OWSAP)
  • Strong technical knowledge with software engineering, system and network security, authentication and security protocols, cryptography and network/ web related protocols (TCP, UDP, HTTP, HTTPS)
  • Technical experience within cloud hosting and pen testing techniques of cloud based applications
  • Experience with pen testing tools such as BurpSuite, OWASP, Zap, SoapUI etc.
  • Certifications such as CREST, Tiger, OSCP, OSCE, CHECK
  • Scripting and development experience  and AWS is highly desirable
  • Experience within static analysis, security code review, automation and training would be ideal.

If this sounds like a role that you would be interested in, please get in touch.

Like the look of this? Get in touch!

Why not register for our Jobs-by-Email service?

Click to Register

Contact us

Need some help from the Rebels?
Get in touch (we’re a friendly bunch)

Get in Touch