Penetration Tester (CTM level)

We are a Global Recruitment specialist that provides support to the clients across EMEA, APAC, US and Canada. We have an excellent job opportunity for you.

Role Title: Penetration Tester (CTM level)

Location: Wokingham RG41 5BN | Hybrid - 3 office/2 home

Duration: 30/06/2026

Description

CONTRACTOR MUST HOLD ACTIVE SC CLEARANCE AND BE A SOLE UK NATIONAL MUST BE PAYE THROUGH UMBRELLA

Role Description:

A penetration tester plays a vital role within the UK's cybersecurity industry, particularly when assisting organisations with managing and mitigating security risks. The core responsibilities of a penetration tester are to identify vulnerabilities that are present in an organisation's IT infrastructure, applications and networks through rigorous testing. Employing both manual and automated techniques to simulate real world attacks, this will assess a company's security posture against any potential threats. Testers should also be responsible for maintaining an up-to-date knowledge of the ever-evolving threat landscape, adhering to ethical guidelines especially when handling sensitive data. In addition to strong technical skills, a penetration tester also needs to be able to demonstrate strong communication skills so complex findings can be described to non-technical stakeholders.

Key Responsibilities

• Work as a professional, deliverable Technical Consultant (Penetration Tester CTM), offering clients a totally professional customer service experience, whilst adhering to its core values and company policies and procedures
• Conduct the full range of effective and comprehensive technical assessments and consultancy services to the highest standards
• Maintain an accurate and up to date knowledge of information security issues, keeping abreast of new technologies, methodologies, techniques, vulnerabilities and market trends and communicate this throughout the team
• Produce concise and accurate technical reports and executive summaries, in line with client and company expectations in accordance with the QA manual and within defined deadlines
• Participate in more specialist areas of technical assessments and consultancy services where required
• Participate in delivery of security management consultancy including IT Health Checks (ITHC), risk assessments and compliance and standards based audits, where required
• Engage with and fully participate in research & service development projects
• Ensure professional, coherent and relevant communication within client and our clients at an appropriate level, using relevant language and at all times, behave in a manner that reflects the values of client. Maintain confidentiality at all times
• Ensure that work is carried out in accordance with defined client policies and procedures
• Complete all tasks in a manner that displays a commercial awareness; ie managing client expectations and ensuring that project tasks are completed on time and on budget
• Complete administrative duties, which include weekly timesheet and expense submissions
• Through the course of your duties, identify opportunities for further business development and growth and ensure that this is communicated to your line manager, the PMO and Sales department
• Where necessary assist the commercial team in the preparation of test scopes and proposals
• Carry out any other additional, reasonable and alternative tasks that may be required from time to time

Required skills, experience and personal attributes:

• Proven experience (2-3 years) in an IT security role to CTM level is essential and have, or be able to attain SC clearance (UK Single National)
• Excellent written and verbal communication skills.
• Great organisation skills and ability to work in a pressurised environment whilst working towards and achieving deadlines.
• Use of MS Office software such as Word, Excel, Powerpoint
• The ability to travel to client customer locations.
• Strong knowledge of penetration testing tools including (Burpsuite, Metasploit, Nmap) etc
• Good knowledge of multiple Operating Systems (OS) including Windows &.NIX
• Ability to configure network devices, Firewalls, IDS/IPS devices and wireless technologies
• Document findings in detailed reports, providing clear recommendations for remediation using client in-house developed reporting tool.
• Good understanding of common security standards and regulatory compliance such as GDPR, ISO27001 and PCI DSS
• An ability to work effectively and positively within a team and willing to collaborate and readily share knowledge and skills
• MUST: Relevant degree/postgraduate degree
• CHECK Team Member qualification (Crest/CyberScheme)
• Experience in Cloud Security (AWS/Azure)