At a Glance
- Tasks: Conduct penetration testing on web and mobile applications to identify vulnerabilities.
- Company: Join a cutting-edge cybersecurity start-up in Manchester with a focus on innovation.
- Benefits: Up to £50k salary, unlimited holidays, private healthcare, and EMI share options.
- Other info: Flexible hybrid work environment with opportunities for professional growth.
- Why this job: Be part of a revolutionary approach to continuous penetration testing and shape the future of security.
- Qualifications: 2+ years in penetration testing or application security; certifications are a plus but not required.
The predicted salary is between 45000 - 50000 £ per year.
We have an exciting opportunity to join our Manchester-based application security business as a member of the penetration testing team. Cytix is a platform that threat models live development tickets and creates security testing plans that include both manual and automated testing. In this role, you won't be confined to traditional 4+1 web applications. We're breaking away from the constraints of CHECK or CE+ standards, and we're not interested in producing lengthy PDF reports. Instead, our focus is on seamlessly integrating continuous penetration testing into our customers' Software Development Life Cycle (SDLC). Collaborating closely with both our in-house development team and clients, you'll play a pivotal role in shaping the evolution of our products and services, helping to deliver the next generation of continuous penetration testing.
This is a full-time hybrid role for a Penetration Tester specializing in Application Security (AppSec), located in Manchester with flexibility for remote work.
Responsibilities include:
- Penetration Testing web applications, APIs, mobile applications, etc for our clients across a range of industries.
- Working with stakeholders of both a technical and non-technical nature to assist in vulnerability identification and remediations.
- Performing risk reviews of application changes as part of our continuous security testing process.
- Collaborating closely with developers and other teams to strengthen application security, drive continuous improvement, and enhance organizational resilience to cybersecurity threats.
Salary and Benefits:
- Up to £50k (reviewed regularly)
- EMI share options
- Pension: 8% (3% employer, 5% employee)
- Discretionary benefits
- Private Healthcare (including dental, optical, and hearing)
- Unlimited Holidays
Location: Office / Hybrid (Manchester City Centre) Permanent, full-time (40hrs/week)
Exclusions:
- No agencies
- No STC/contractors
- No remote workers
- No visa sponsorships
Requirements:
- 2+ years in Penetration Testing, Application Security Engineering, or a similar offensive security role.
Qualifications:
While certifications are not required to apply for this role, the following certifications are recognised as advantageous when applying: CREST CRT, CPSA, OSCP, OSWA, OSWE.
Penetration Tester employer: Cytix
Cytix is an innovative cybersecurity start-up based in Manchester, offering a dynamic work environment that fosters collaboration and creativity. With a focus on continuous penetration testing integrated into the Software Development Life Cycle, employees enjoy flexible hybrid working arrangements, competitive salaries, and generous benefits including unlimited holidays and private healthcare. This role not only provides opportunities for professional growth but also allows you to be at the forefront of shaping cutting-edge security solutions in a supportive and forward-thinking culture.
StudySmarter Expert Advice🤫
We think this is how you could land Penetration Tester
✨Tip Number 1
Network like a pro! Attend local cybersecurity meetups or online webinars to connect with industry folks. You never know who might have the inside scoop on job openings or can put in a good word for you.
✨Tip Number 2
Show off your skills! Create a portfolio showcasing your penetration testing projects, whether they're personal or freelance. This gives potential employers a taste of what you can do and sets you apart from the crowd.
✨Tip Number 3
Tailor your approach! When reaching out to companies like Cytix, mention specific projects or technologies they use that excite you. This shows you've done your homework and are genuinely interested in their work.
✨Tip Number 4
Apply through our website! We love seeing applications come directly from passionate candidates. It makes it easier for us to spot your enthusiasm and fit for the role, especially in a dynamic field like penetration testing.
We think you need these skills to ace Penetration Tester
Some tips for your application 🫡
Show Your Passion for Security:When writing your application, let your enthusiasm for penetration testing and application security shine through. We want to see that you’re not just ticking boxes but genuinely excited about the role and the innovative work we do at Cytix.
Tailor Your CV and Cover Letter:Make sure to customise your CV and cover letter to highlight relevant experience in penetration testing and application security. We love seeing how your skills align with our mission of integrating continuous security testing into the SDLC.
Be Clear and Concise:Keep your application straightforward and to the point. We appreciate clarity, so avoid jargon and lengthy explanations. Focus on what makes you a great fit for the role and how you can contribute to our team.
Apply Through Our Website:Don’t forget to submit your application through our website! It’s the best way for us to receive your details and ensures you’re considered for this exciting opportunity in our Manchester-based team.
How to prepare for a job interview at Cytix
✨Know Your Stuff
Make sure you brush up on your penetration testing skills and knowledge of application security. Familiarise yourself with the latest tools and techniques, especially those relevant to web applications, APIs, and mobile apps. Being able to discuss specific vulnerabilities and remediation strategies will show that you're not just a theory person but someone who can get hands-on.
✨Understand Their Approach
Cytix is all about integrating continuous penetration testing into the SDLC. Research their platform and be ready to discuss how you can contribute to this innovative approach. Think about how you can help bridge the gap between technical and non-technical stakeholders, as collaboration is key in this role.
✨Show Your Problem-Solving Skills
Prepare to share examples from your past experiences where you've identified vulnerabilities and successfully remediated them. Highlight your thought process and how you worked with teams to enhance application security. This will demonstrate your ability to think critically and work collaboratively.
✨Ask Insightful Questions
Interviews are a two-way street, so come prepared with questions that show your interest in the company and the role. Ask about their current challenges in application security or how they envision the future of continuous penetration testing. This not only shows your enthusiasm but also helps you gauge if the company is the right fit for you.
