Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Conduct penetration testing and vulnerability assessments on enterprise applications.
- Company: Join a leading Information Security team in Ipswich with a focus on innovation.
- Benefits: Competitive pay, flexible working arrangements, and opportunities for professional growth.
- Why this job: Make a real difference by identifying security gaps and protecting vital systems.
- Qualifications: Experience in penetration testing and strong understanding of application security.
- Other info: Collaborative environment with potential for career advancement in cybersecurity.
The predicted salary is between 36000 - 60000 £ per year.
We are looking to recruit the services of an experienced Penetration Tester to join our client’s Information Security team on a contract basis (initially 6 months, inside IR35). The role is based in Ipswich, so candidates MUST live a commutable distance and be willing to work on-site 3 days per week.
Responsibilities Will Include:
- Perform penetration testing across enterprise applications and systems.
- Conduct detailed vulnerability assessments, identifying weaknesses, misconfigurations, and security gaps.
- Produce high‑quality security assessment reports outlining findings, exploitability, and potential business impact.
- Present findings to senior stakeholders, including the CISO.
- Collaborate with internal teams to gather contextual information needed for assessments.
- Support broader Governance, Risk & Compliance (GRC) objectives where required.
- Contribute expertise relating to threat modelling, exploitation techniques, and security best practices.
- Apply industry‑recognised standards and frameworks (e.g., NIST, CIS Controls, ISO 27001) where relevant.
Required Skills & Experience:
- Proven experience performing penetration testing in professional environments.
- Strong technical understanding of application security, exploit techniques, and common vulnerability classes.
- Hands‑on experience with common tooling (e.g., Burp Suite, Qualys, Tenable, Nexpose).
- Ability to clearly communicate technical issues to non‑technical audiences.
- Excellent analytical and documentation skills.
Preferred (Not Essential):
- Exposure to risk reporting, vulnerability management, or security assessments.
- Security certifications such as OSCP, CEH, CISSP, CISM, CRISC or equivalent.
- Experience working in regulated sectors (finance, healthcare, government).
- Familiarity with frameworks such as NIST, ISO 27001, CIS Controls, or methodologies such as CVSS/FAIR.
Penetration Tester employer: Marshall Wolfe
Contact Detail:
Marshall Wolfe Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Penetration Tester
✨Tip Number 1
Network like a pro! Reach out to your connections in the cybersecurity field, especially those who are already working as Penetration Testers. They might have insider info on job openings or even refer you directly to hiring managers.
✨Tip Number 2
Show off your skills! Create a portfolio showcasing your penetration testing projects, reports, and any relevant certifications. This will help you stand out when chatting with potential employers and give them a taste of what you can bring to the table.
✨Tip Number 3
Prepare for interviews by brushing up on common penetration testing scenarios and be ready to discuss your approach to vulnerability assessments. Practising how to explain technical concepts to non-technical folks will also score you points!
✨Tip Number 4
Don’t forget to apply through our website! We’ve got loads of opportunities that might just be the perfect fit for you. Plus, applying directly can sometimes give you an edge over other candidates.
We think you need these skills to ace Penetration Tester
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Penetration Tester role. Highlight your experience with penetration testing, application security, and any relevant certifications. We want to see how your skills match what we're looking for!
Showcase Your Skills: In your cover letter, don’t just list your skills—show us how you've used them in real-world scenarios. Talk about specific projects or challenges you've tackled that relate to the responsibilities mentioned in the job description.
Be Clear and Concise: When writing your application, keep it clear and to the point. Use straightforward language to explain your technical expertise, especially when discussing complex topics. Remember, we need to understand your experience without getting lost in jargon!
Apply Through Our Website: We encourage you to apply through our website for a smoother process. It helps us keep track of applications and ensures you get all the updates directly from us. Plus, it shows you're keen on joining our team!
How to prepare for a job interview at Marshall Wolfe
✨Know Your Tools
Make sure you're familiar with the common tools mentioned in the job description, like Burp Suite and Qualys. Brush up on how to use them effectively, as you might be asked to demonstrate your skills or discuss your experience with these tools during the interview.
✨Prepare for Technical Questions
Expect to dive deep into technical discussions about penetration testing and vulnerability assessments. Review common vulnerability classes and exploit techniques, and be ready to explain them clearly, especially to non-technical stakeholders, as this is a key part of the role.
✨Showcase Your Reporting Skills
Since producing high-quality security assessment reports is crucial, prepare examples of past reports you've created. Highlight how you communicated findings and their potential business impact, as this will demonstrate your ability to present complex information effectively.
✨Understand the Business Context
Research the company and its industry, especially if they operate in regulated sectors like finance or healthcare. Understanding their specific security challenges will help you tailor your responses and show that you can contribute to their Governance, Risk & Compliance objectives.
