Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Execute cloud penetration tests and develop innovative strategies for AWS environments.
- Company: Join NetSPI, a leader in modern pentesting with a collaborative culture.
- Benefits: Competitive salary, flexible work options, and opportunities for professional growth.
- Why this job: Make a real impact in cybersecurity while working with top-tier tools and experts.
- Qualifications: 3-5 years of experience in cloud penetration testing and strong communication skills.
- Other info: Be part of an award-winning workplace culture and contribute to the security community.
The predicted salary is between 36000 - 60000 £ per year.
NetSPI® pioneered Penetration Testing as a Service (PTaaS) and leads the industry in modern pentesting. Combining world-class security professionals with AI and automation, NetSPI delivers clarity, speed, and scale across 50+ pentest types, attack surface management, and vulnerability prioritization. The NetSPI platform streamlines workflows and accelerates remediation, enabling our experts to focus on deep dive testing that uncovers vulnerabilities others miss. Trusted by the top 10 U.S. banks and Fortune 500 companies worldwide, NetSPI has been driving security innovation since 2001. We are looking for individuals with a collaborative, innovative, and customer-first mindset to join our team.
We are seeking an experienced professional with demonstrated technical depth and breadth in Cloud Penetration Testing as well as the soft skills to effectively communicate with executive and technical teams. In this role, you will have the ability to work alongside a world-class team using top-tier custom tools. Applicants are expected to leverage strong problem-solving skills, as well as lead, collaborate, and innovate to deliver high-quality exercises and exceptional experiences for our customers.
Responsibilities
- Execute cloud penetration tests against AWS environments.
- Develop innovative TTPs in support of Cloud testing.
- Create attack narratives and findings-based penetration test reports for clients.
- Collaborate with clients to create remediation strategies that will help improve their security posture.
- Act as a resource for internal team members as it relates to in-depth technical questions or best practices in Cloud.
- Assist in QA review of Cloud engagements.
- Help define and document internal processes and TTPs.
- Contribute to the information security community through the development of tools, presentations, white papers, and blogs.
Minimum Qualifications
- Bachelor's degree or higher with a concentration in computer science, engineering, math, IT, or equivalent experience.
- 3 - 5 years experience performing offensive/attack-oriented penetration tests against AWS environments and External/Internal networks.
- Recognized Penetration Testing specific qualifications such as GXPN, OSCP, OSCE, or similar certifications.
- Strong communication, presentation, and writing skills.
- Experience performing security focused cloud configuration reviews.
- Experience with offensive toolkits for both cloud and network penetration testing.
- Demonstrable knowledge in the following areas:
- Exploiting security misconfigurations for core cloud services such as Compute, Storage, Databases, Networking, Kubernetes, and other PAAS services.
- IAM security fundamentals and how to leverage excessive permissions for lateral movement and privilege escalation within the cloud.
- Testing external cloud attack surfaces.
- Testing internal cloud attack surfaces.
Preferred Qualifications
- Programming experience in one or more of the following languages: Python, PowerShell, C#, Go.
- Experience researching new cloud service offerings with the goal of identifying misconfigurations and vulnerabilities.
- Web Application pentesting experience.
We are an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status or any other characteristic protected by law.
Senior Security Consultant (Cloud Penetration Testing - AWS) employer: NetSPI
Contact Detail:
NetSPI Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Senior Security Consultant (Cloud Penetration Testing - AWS)
✨Tip Number 1
Network like a pro! Attend industry meetups, webinars, or conferences related to cloud security and penetration testing. It's a great way to meet potential employers and learn about job openings that might not be advertised.
✨Tip Number 2
Show off your skills! Create a portfolio showcasing your cloud penetration testing projects, tools you've developed, or any presentations you've given. This can really set you apart from other candidates when you're chatting with hiring managers.
✨Tip Number 3
Don’t just apply – engage! When you find a role that excites you, reach out to current employees on LinkedIn. Ask them about their experiences at NetSPI and express your enthusiasm for the position. It shows initiative and can help you get noticed.
✨Tip Number 4
Keep learning and sharing! Stay updated on the latest trends in cloud security and penetration testing. Write blogs or create content around your findings and share them on platforms like LinkedIn. This not only builds your personal brand but also demonstrates your passion for the field.
We think you need these skills to ace Senior Security Consultant (Cloud Penetration Testing - AWS)
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Senior Security Consultant role. Highlight your experience with AWS and cloud penetration testing, and don’t forget to mention any relevant certifications like OSCP or GXPN. We want to see how your skills align with what we’re looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to showcase your passion for security and your problem-solving skills. Share specific examples of your past work in cloud environments and how you’ve contributed to improving security postures. Let us know why you’re excited about joining our team!
Show Off Your Communication Skills: Since this role involves collaborating with both technical and executive teams, make sure to demonstrate your communication prowess. Use clear and concise language in your application materials, and consider including examples of how you've effectively communicated complex security concepts in the past.
Apply Through Our Website: We encourage you to apply directly through our website! It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, you can explore more about our culture and values while you’re there. We can’t wait to hear from you!
How to prepare for a job interview at NetSPI
✨Know Your Stuff
Make sure you brush up on your technical knowledge, especially around AWS and cloud penetration testing. Be ready to discuss specific tools and techniques you've used in past projects, as well as any innovative TTPs you've developed.
✨Showcase Your Soft Skills
Since communication is key in this role, practice articulating complex security concepts in a way that’s easy to understand. Think about examples where you've successfully collaborated with both technical and non-technical teams.
✨Prepare for Scenario Questions
Expect to face scenario-based questions that test your problem-solving skills. Prepare by thinking through how you would approach common vulnerabilities or misconfigurations in cloud environments, and be ready to explain your thought process.
✨Engage with the Company Culture
Research NetSPI's workplace culture and values. Be prepared to discuss how your collaborative and customer-first mindset aligns with their mission. Showing genuine interest in their growth journey can set you apart from other candidates.
