Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Conduct diverse penetration tests and deliver findings to clients.
- Company: Join a dynamic security consultancy based in London.
- Benefits: Enjoy hybrid work flexibility, competitive salary, and ongoing professional development.
- Other info: Mentorship opportunities and involvement in marketing materials are included.
- Why this job: Be part of a collaborative team that values autonomy and innovation.
- Qualifications: Strong knowledge of OWASP and proficiency in security tools required.
The predicted salary is between 36000 - 60000 Β£ per year.
Job Title:
Penetration Tester
Role:
An exciting opportunity for a mid-level Penetration Tester to join a dynamic and collaborative security consultancy based in London. This role is ideal for a proactive individual with a hackerβs mindset and broad security testing experience across applications, networks, cloud platforms, and more.
You\βll be a key player in delivering high-quality penetration tests while also supporting client advisory, team development, and process improvement.
Whatβs in it for you?
Autonomy and ownership in conducting diverse penetration testing engagements.
Ongoing professional development with access to industry events and training.
A positively charged work environment with flexibility for hybrid working post-probation.
Responsibilities:
Conduct web, mobile, API, infrastructure, cloud, and wireless penetration testing.
Create detailed technical reports and deliver test findings directly to clients.
Provide remediation advice and post-assessment consultancy.
Contribute to internal testing methodologies and Red Team/social engineering activities.
Mentor junior team members and support collaborative delivery of projects.
Occasionally support the creation of marketing materials such as research papers and articles.
Skills / Must have:
Strong knowledge of OWASP methodologies and offensive testing across black/grey/white-box approaches.
Proficiency in tools like Burp Suite, Kali, Nmap, Nessus, Qualys, Metasploit.
Familiarity with cloud platform security testing (AWS, Azure, GCP).
Understanding of mobile security (Android & iOS), networking protocols, and the OSI model.
Excellent verbal and written communication skills, especially for client-facing engagements.
Highly organised, analytical, and able to manage multiple projects independently.
Ability to explain technical risks to non-technical stakeholders and C-level executives.
SC Clearable
Desirable (βnice to haveβ) Skills:
Experience with programming, databases, and IoT security.
Exposure to CI/CD security, Docker/container security, and AI/LLM testing.
Hands-on experience with Red Teaming tools (e.g., Cobalt Strike) and social engineering.
Familiarity with bug bounty platforms and vulnerability disclosure best practices.
Benefits:
Competitive salary with regular performance reviews
Annual training and personal development plan
Access to conferences and professional events
Supportive and knowledgeable team culture
Hybrid work flexibility after probation
Salary:
Competitive (dependent on experience)
Mid-Level Penetration tester employer: Hamilton Barnes π³
Contact Detail:
Hamilton Barnes π³ Recruiting Team
StudySmarter Expert Advice π€«
We think this is how you could land Mid-Level Penetration tester
β¨Tip Number 1
Network with professionals in the cybersecurity field, especially those who are already working as penetration testers. Attend industry events or local meetups to connect with potential colleagues and learn about their experiences. This can give you insights into the role and may even lead to referrals.
β¨Tip Number 2
Stay updated on the latest trends and tools in penetration testing. Follow relevant blogs, podcasts, and forums to enhance your knowledge of OWASP methodologies and the tools mentioned in the job description. Demonstrating your passion for continuous learning can set you apart during interviews.
β¨Tip Number 3
Consider contributing to open-source projects or participating in bug bounty programmes. This hands-on experience not only sharpens your skills but also showcases your proactive approach to potential employers. Itβs a great way to build your portfolio and demonstrate your capabilities.
β¨Tip Number 4
Prepare to discuss real-world scenarios during your interview. Be ready to explain how you would approach specific penetration testing tasks or challenges. This will show your problem-solving skills and your ability to communicate technical concepts effectively to non-technical stakeholders.
We think you need these skills to ace Mid-Level Penetration tester
Some tips for your application π«‘
Tailor Your CV: Make sure your CV highlights relevant experience in penetration testing, especially with tools like Burp Suite and Kali. Emphasise your knowledge of OWASP methodologies and any specific projects that showcase your skills.
Craft a Strong Cover Letter: In your cover letter, express your passion for cybersecurity and detail how your proactive approach aligns with the company's values. Mention specific experiences that demonstrate your ability to conduct diverse penetration tests and mentor junior team members.
Showcase Communication Skills: Since excellent verbal and written communication skills are crucial for this role, consider including examples of how you've effectively communicated technical risks to non-technical stakeholders in previous roles.
Highlight Continuous Learning: Mention any ongoing professional development activities, such as training or certifications related to penetration testing or security. This shows your commitment to staying updated in the field and aligns with the company's focus on professional growth.
How to prepare for a job interview at Hamilton Barnes π³
β¨Showcase Your Technical Skills
Be prepared to discuss your experience with penetration testing tools like Burp Suite, Kali, and Nmap. Highlight specific projects where you successfully identified vulnerabilities and how you approached the testing process.
β¨Demonstrate Your Understanding of OWASP
Familiarise yourself with OWASP methodologies and be ready to explain how you've applied them in past roles. This will show your depth of knowledge and commitment to security best practices.
β¨Communicate Clearly
Since you'll be interacting with clients, practice explaining technical concepts in simple terms. Prepare examples of how you've communicated risks to non-technical stakeholders or C-level executives in previous positions.
β¨Prepare for Scenario-Based Questions
Expect questions that assess your problem-solving skills and approach to real-world scenarios. Think about how you would handle different types of penetration tests and be ready to discuss your thought process.