Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Conduct penetration testing and security assessments across diverse technologies and environments.
- Company: Established cyber security organisation investing in offensive security capabilities.
- Benefits: Competitive salary of £50-60k, remote work, and opportunities for professional growth.
- Other info: Gain exposure to various technologies and client engagements while working remotely.
- Why this job: Join a collaborative team and enhance your skills in a highly technical environment.
- Qualifications: CREST CRT certification, OSCP, and 2-3 years of hands-on penetration testing experience.
The predicted salary is between 50000 - 60000 £ per year.
We're partnered with a well-established cyber security organisation that's continuing to invest heavily into its offensive security capability following sustained client growth across both commercial and regulated environments. As part of that growth, they're looking to hire a CREST-certified Penetration Tester to join a collaborative testing team delivering security assessments across a broad range of technologies and customer environments.
This role would suit someone with around 2-3 years of hands-on penetration testing experience who is looking to continue developing within a highly technical and supportive environment.
Salary: £50-60k DOE
Working Structure: Remote with onsite client visits occasionally
Security Clearance: Beneficial but not required (SC/DV)
Certifications: CREST CRT, OSCP (Essential)
The Role: You'll be involved in delivering:
- Web application penetration testing
- Infrastructure and internal network testing
- External vulnerability assessments
- Active Directory and privilege escalation testing
- Cloud security assessments across Azure/AWS
- Security reporting and remediation discussions with clients
You'll work closely with senior testers and technical leads, gaining exposure to a wide variety of technologies, environments and engagement types.
What They're Looking For:
- CREST Registered Tester (CRT) certification essential
- OSCP Certification
- Around 2-3 years of penetration testing experience
- Strong understanding of web application and infrastructure testing methodologies
- Experience with tools such as Burp Suite, Nmap, Nessus, Metasploit, etc.
- Understanding of OWASP Top 10 and common attack vectors
- Strong report writing and communication skills
- Consultancy/client-facing experience beneficial
- Additional certifications such as CPSA or cloud security certifications would be advantageous.
If you're a CRT-certified Penetration Tester looking to continue developing your offensive security career within a strong technical environment, please apply or reach out for a confidential conversation.
CREST Penetration Tester employer: Oscar Associates (UK) Limited
Contact Detail:
Oscar Associates (UK) Limited Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land CREST Penetration Tester
✨Tip Number 1
Network like a pro! Reach out to your connections in the cyber security field, attend meetups, and engage in online forums. The more people you know, the better your chances of landing that perfect role.
✨Tip Number 2
Show off your skills! Create a portfolio showcasing your penetration testing projects or contributions to open-source tools. This will give potential employers a taste of what you can do and set you apart from the crowd.
✨Tip Number 3
Prepare for interviews by brushing up on common penetration testing scenarios and methodologies. Practice explaining your thought process and how you approach different types of assessments—this will impress interviewers!
✨Tip Number 4
Don't forget to apply through our website! We have loads of opportunities waiting for talented individuals like you. Plus, it’s a great way to ensure your application gets the attention it deserves.
We think you need these skills to ace CREST Penetration Tester
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your CREST CRT and OSCP certifications right at the top. We want to see your 2-3 years of hands-on penetration testing experience, so don’t hold back on showcasing your skills with tools like Burp Suite and Nmap!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you’re passionate about offensive security and how your experience aligns with our needs. We love seeing enthusiasm and a bit of personality, so let us know what makes you tick!
Showcase Your Communication Skills: Since this role involves client-facing interactions, make sure to highlight your strong report writing and communication skills. We want to see examples of how you've effectively communicated complex security issues in the past.
Apply Through Our Website: We encourage you to apply directly through our website for a smoother process. It helps us keep track of applications better and ensures you don’t miss out on any important updates from us!
How to prepare for a job interview at Oscar Associates (UK) Limited
✨Know Your Tools
Familiarise yourself with the tools mentioned in the job description, like Burp Suite, Nmap, and Metasploit. Be ready to discuss your experience with these tools and how you've used them in past projects.
✨Brush Up on Methodologies
Make sure you have a solid understanding of web application and infrastructure testing methodologies. Review the OWASP Top 10 and be prepared to explain common attack vectors during the interview.
✨Showcase Your Communication Skills
Since this role involves client-facing interactions, practice articulating your findings clearly and concisely. Prepare to discuss how you would handle security reporting and remediation discussions with clients.
✨Prepare for Technical Questions
Expect technical questions that assess your hands-on experience. Think about specific scenarios where you’ve conducted penetration tests and be ready to walk through your thought process and outcomes.