At a Glance
- Tasks: Simulate attacks to identify vulnerabilities in networks, applications, and cloud infrastructure.
- Company: Fast-growing cybersecurity firm with a mission to protect digital assets.
- Benefits: Professional development budget, certification support, and flexible on-site work.
- Other info: Vibrant office culture near the coast with excellent career growth opportunities.
- Why this job: Join a mission-driven team and make a global impact in cybersecurity.
- Qualifications: 3+ years in penetration testing and strong understanding of common vulnerabilities.
The predicted salary is between 36000 - 60000 £ per year.
Cyber Defence is a fast-growing cybersecurity company on a mission to protect digital assets and build client trust through robust, ethical, and forward-thinking cyber practices. From our office in Pueblo Nuevo, we serve clients across the UK, Spain, and beyond, working with CREST-certified practices and delivering government-grade security services.
As a Pentester at Cyber Defence, you'll play a key role in simulating attacks to identify system vulnerabilities across networks, applications, and cloud infrastructure. This is a hands-on technical role with a strategic impact on our clients' resilience and regulatory compliance.
Key Responsibilities
- Plan and execute manual and automated penetration tests across web apps, networks, and APIs.
- Perform internal and external vulnerability assessments.
- Create comprehensive reports on findings with clear mitigation guidance.
- Collaborate with SOC Analysts, DevSecOps, and IT teams to implement remediations.
- Stay updated on the latest attack vectors and security research.
- Support Red Team and Purple Team exercises.
- Assist with incident response investigations when needed.
Skills and Qualifications
Must-Haves
- 3+ years of experience in penetration testing or offensive security.
- Strong understanding of common vulnerabilities (OWASP Top 10, MITRE ATT&CK).
- Proficiency in tools such as Burp Suite, Nmap, Metasploit, Nessus, and Wireshark.
- Experience with scripting languages (Python, Bash, PowerShell).
- Excellent written and verbal communication (English).
- Eligibility to work in Spain and occasional travel if required.
Nice-to-Haves
- CREST CRT or equivalent (OSCP, OSWE, CEH, etc.).
- Experience with cloud pentesting (AWS, Azure, GCP).
- Familiarity with compliance standards (ISO 27001, GDPR, NIST, PCI DSS).
- English & Spanish language skills.
OUR BENEFITS
- Be part of a mission-driven cybersecurity firm with global impact.
- Work alongside CREST-certified experts and forward-thinking leadership.
- Professional development budget & certification support.
- On-site work with flexibility (based out of Pueblo Nuevo office).
- Vibrant office culture near the coast – good vibes only!
Pentester employer: CyberDefence
Cyber Defence is an exceptional employer, offering a vibrant office culture in Pueblo Nuevo that fosters collaboration and innovation among its team of CREST-certified experts. With a strong commitment to professional development, employees benefit from a dedicated budget for training and certification support, ensuring continuous growth in the fast-evolving field of cybersecurity. Join us to make a meaningful impact while enjoying the flexibility of on-site work and the positive atmosphere of our coastal location.
StudySmarter Expert Advice🤫
We think this is how you could land Pentester
✨Tip Number 1
Network like a pro! Attend cybersecurity meetups, conferences, or online webinars. It's a great way to connect with industry folks and get your name out there.
✨Tip Number 2
Show off your skills! Create a portfolio showcasing your pentesting projects or any relevant work. This can really set you apart when chatting with potential employers.
✨Tip Number 3
Don’t just apply – engage! When you find a role that excites you, reach out to the hiring manager on LinkedIn. A friendly message can make a big difference!
✨Tip Number 4
Keep learning and stay updated! Follow the latest trends in cybersecurity and share your insights on social media. It shows you're passionate and committed to the field.
We think you need these skills to ace Pentester
Some tips for your application 🫡
Tailor Your CV:Make sure your CV highlights your experience in penetration testing and offensive security. We want to see how your skills align with the role, so don’t be shy about showcasing your expertise with tools like Burp Suite and Nmap!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you’re passionate about cybersecurity and how you can contribute to our mission at Cyber Defence. Keep it concise but impactful – we love a good story!
Showcase Your Communication Skills:Since excellent written communication is a must-have for this role, make sure your application is clear and well-structured. We appreciate candidates who can convey complex ideas simply, so keep that in mind when writing your application.
Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it’s super easy – just a few clicks and you’re on your way!
How to prepare for a job interview at CyberDefence
✨Know Your Tools Inside Out
Make sure you’re well-versed in the tools mentioned in the job description, like Burp Suite and Metasploit. Practise using them in real-world scenarios so you can confidently discuss your experience during the interview.
✨Brush Up on Vulnerabilities
Familiarise yourself with the OWASP Top 10 and MITRE ATT&CK frameworks. Be prepared to explain how you’ve identified and mitigated these vulnerabilities in past roles, as this will show your practical knowledge and strategic thinking.
✨Prepare for Technical Questions
Expect technical questions that test your problem-solving skills. Practise explaining your thought process when conducting penetration tests or vulnerability assessments, as this will demonstrate your analytical abilities and hands-on experience.
✨Show Your Communication Skills
Since you'll need to create comprehensive reports and collaborate with various teams, be ready to showcase your written and verbal communication skills. Consider preparing a brief example of a report you've created or a situation where you effectively communicated complex information.
