Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join our team to craft and execute innovative social engineering campaigns.
- Company: Rapid7, a leader in cybersecurity with a collaborative culture.
- Benefits: Remote work, competitive salary, and opportunities for professional growth.
- Why this job: Make a real impact in cybersecurity by testing and improving client security postures.
- Qualifications: 5+ years in technical security roles and expertise in social engineering techniques.
- Other info: Dynamic environment with a focus on teamwork and continuous learning.
The predicted salary is between 36000 - 60000 £ per year.
Do you enjoy attacking networks? Do you enjoy sifting through large amounts of attack surface, crafting novel attack chains to breach a client’s perimeter, gaining initial access, laterally moving, and demonstrating impact, all while evading security teams and their controls? As a penetration tester on the Global Services team at Rapid7, you will help our clients improve their security posture through your technical skills and knowledge of both offensive and defence strategies.
About the Team
Vector Command is an always-on Red Team operation supporting multiple customers. As part of a specialized team, you will emulate real adversaries by performing large-scale reconnaissance, identifying exposed or high-value assets, and discovering weaknesses that can be leveraged for compromise. After gaining access, the team continues with post-compromise objectives to demonstrate real impact, evade detection, and assess the effectiveness of security controls. This service evaluates far more than vulnerabilities—it tests the customer’s entire security posture and defence-in-depth strategy. In addition to offensive operations, you will support customers through external attack surface analysis, exposure reconnaissance, integration of accounts and tools, preparation of monthly Red Team reports, and prioritization of customer requests. Daily collaboration with Vector Command operators is essential, as is maintaining awareness of new vulnerabilities, shifts in customer attack surfaces, and changes across customer environments.
About the Role
Your primary responsibility is to deliver Rapid7’s Vector Command Continuous Red Teaming service. In this role, you will design social engineering campaigns which function at scale, supporting numerous customers each month, emulating modern adversary TTPs. These campaigns focus on initial access, not click rates, and are often combined with external vulnerabilities or misconfigurations to demonstrate real-world impact. Specifically, your focus will be to:
- Deploy, configure, and maintain social engineering infrastructure to perform phishing operations at scale.
- Perform manual and automated reconnaissance at scale to identify targets for social engineering operations each month.
- Leverage external network vulnerabilities reported by Vector Command team members in targeted real-world social engineering attacks (incorporate subdomain takeovers, cross-site scripting, etc. into campaigns).
- Research the latest techniques in social engineering and implement them in monthly campaigns.
- Research and test methods to bypass social engineering defenses such as email filters, download restrictions, multi-factor authentication mechanisms, etc.
- Be an expert in sending phishing emails which make it to the client’s inbox.
- Design and execute vishing campaigns.
- Incorporate payloads provided by the Red Team lead into phishing and vishing operations.
- Upon successful credential breach or payload execution, evaluate the impact and coordinate with Vector Command team members for post-compromise breach simulation.
- Collaborate closely with a team of Red Team operators, participating in daily meetings to establish attack objectives and operational direction.
- Develop and maintain positive relationships with clients and understand their business and needs.
- Create additional value for clients through continual insights and consultative advice based on experience with the client, their industry, established standards and leading practices.
The skills and qualities you’ll bring include:
- 5+ years in an active technical security role
- Strong knowledge of the following:
- Advanced Social engineering techniques and tactics
- Infrastructure management and deployment (domain records, web servers, terraform, ansible, phishing website creation).
- Modern penetration testing tools and methods
- Network, wireless and web application security concepts
Core Value Embodiment: Embody our core values to foster a culture of excellence that drives meaningful impact and collective success. We know that the best ideas and solutions come from multi-dimensional teams. That’s because these teams reflect a variety of backgrounds and professional experiences. If you are excited about this role and feel your experience can make an impact, please don’t be shy - apply today.
About Rapid7
At Rapid7, our vision is to create a secure digital world for our customers, our industry, and our communities. We do this by harnessing our collective expertise and passion to challenge what’s possible and drive extraordinary impact. We’re building a dynamic and collaborative workplace where new ideas are welcome. Protecting 11,000+ customers against bad actors and threats means we’re continuing to push the envelope just like we’ve been doing for the past 20 years. If you’re ready to solve some of the toughest challenges in cybersecurity, we’re ready to help you take command of your career. Join us.
Penetration Tester, Vector Command, Social Engineering Specialist in London employer: Divvy Cloud Corp.
Contact Detail:
Divvy Cloud Corp. Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Penetration Tester, Vector Command, Social Engineering Specialist in London
✨Tip Number 1
Network with industry professionals! Attend cybersecurity meetups, conferences, or online forums. Engaging with others in the field can lead to job opportunities and valuable insights.
✨Tip Number 2
Showcase your skills through practical demonstrations. Create a portfolio of your penetration testing projects or write about your experiences on platforms like GitHub. This gives potential employers a taste of what you can do!
✨Tip Number 3
Prepare for interviews by practising common technical questions and scenarios. Mock interviews with friends or mentors can help you articulate your thought process and problem-solving skills effectively.
✨Tip Number 4
Don’t forget to apply through our website! We’re always looking for talented individuals who are passionate about cybersecurity. Your next big opportunity could be just a click away!
We think you need these skills to ace Penetration Tester, Vector Command, Social Engineering Specialist in London
Some tips for your application 🫡
Show Off Your Skills: When you're writing your application, make sure to highlight your technical skills and experience in penetration testing. We want to see how you can attack networks and what unique strategies you've used in the past.
Tailor Your Application: Don’t just send a generic application! Tailor it to the role by mentioning specific techniques or tools you’ve used that align with our needs. This shows us you’ve done your homework and are genuinely interested in the position.
Be Clear and Concise: Keep your application clear and to the point. We appreciate well-structured applications that get straight to the facts. Use bullet points if necessary to make it easy for us to read through your qualifications.
Apply Through Our Website: Make sure to apply through our website! It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it shows you’re keen on joining our team at Rapid7!
How to prepare for a job interview at Divvy Cloud Corp.
✨Know Your Stuff
Make sure you brush up on advanced social engineering techniques and the latest penetration testing tools. Be ready to discuss your experience with infrastructure management and how you've deployed phishing operations at scale. This role is all about demonstrating your technical skills, so show them you know what you're talking about!
✨Showcase Your Collaboration Skills
Since this position involves daily collaboration with Vector Command operators, be prepared to talk about your teamwork experiences. Share examples of how you've worked with others to achieve common goals, especially in high-pressure situations. Highlighting your collaborative mindset will show that you're a great fit for their team.
✨Prepare for Real-World Scenarios
Expect questions that test your ability to think like an adversary. Prepare to discuss how you would design social engineering campaigns or respond to specific security challenges. Use examples from your past work to illustrate your thought process and problem-solving skills.
✨Understand the Client's Needs
This role requires building positive relationships with clients, so do your homework! Research the company and its industry before the interview. Be ready to discuss how you can create additional value for clients through insights and consultative advice based on your experience. Showing that you understand their business will set you apart.