Job description

Role Overview

We’re Hiring: Penetration Tester (UK Based)

We’re looking for a skilled Penetration Tester to join our growing team:

3+ years of corporate experience
CREST CRT certified
Willing to travel to client sites (London / Cambridge area)
Contracting availability (potential to go full-time)
Hardworking, reliable, and professional

If you’re passionate about cybersecurity and want to make an impact, we’d love to hear from you.

Location: UK (travel required to client sites)
Role Type: Contract (with potential full-time opportunity)

As a Pentester at Cyber Defence, you will play a key role in identifying vulnerabilities across networks, applications, and cloud infrastructure. This hands-on technical role supports our clients' resilience and compliance by executing manual and automated penetration tests, producing detailed reports, and working closely with internal teams to implement security improvements.

Key Responsibilities

Conducting penetration tests across web applications, APIs, and networks
Performing vulnerability assessments (internal and external)
Reporting findings with actionable mitigation guidance
Collaborating with SOC, DevSecOps, and IT teams
Supporting Red/Purple Team exercises and incident investigations
Staying current on security trends and threats

Skills and Qualifications

Ideal Candidate Profile:
You bring over 3 years of experience in offensive security, a strong understanding of OWASP Top 10 and MITRE ATT&CK, and are skilled with tools like Burp Suite, Metasploit, and Nmap. Scripting knowledge (Python/Bash/PowerShell) and excellent communication in English are essential.

Certifications such as OSCP or CREST CRT and experience with cloud environments are a plus.

You are a fast learner with a growth mindset, adaptable to new challenges, and proactive in your development. Even when working remotely, you will be an active and engaged team member—contributing to meetings and staying connected via our Slack channels to support collaboration and team spirit.

OUR BENEFITS

Contract role to start with, with potential for full-time status under UK employment.

Apply for this job

About us

At Cyber Defence, our culture is built on trust, innovation, and resilience.

We’re a small team of passionate professionals driven by a shared mission:
To protect and defend businesses from sophisticated digital threats!

Collaboration & Teamwork
We believe that the best solutions come from working together. Open communication, mutual respect, and a team-first mentality drive our success. No egos, just a collective drive to deliver the best for our clients.

Innovation & Problem-Solving
Cyber threats are constantly evolving, and so are we. We encourage creativity and curiosity, empowering our team to explore new ideas and develop long-term solutions, not just quick fixes.

Accountability & Integrity
Our clients trust us with their most valuable assets, and we honour that trust through professionalism and transparency. We take ownership, learn from mistakes, and continuously improve.

Growth & Flexibility
We invest in our people through training, mentorship, and professional development. Our flexible work policies support work-life balance, ensuring our team thrives both personally and professionally.

A Mission-Driven Culture
What unites us is a shared mission: to make the digital world safer.
Cyber Defence isn’t just a place to work, it’s where you can make a real impact.

Required profile