Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Conduct exciting penetration tests and lead client engagements to identify security vulnerabilities.
- Company: Join a leading UK consultancy focused on offensive security with a dynamic team.
- Benefits: Enjoy a competitive salary, remote work, travel expenses, and clearance sponsorship.
- Other info: Flexible roles available with excellent career growth opportunities in a fast-paced environment.
- Why this job: Make a real impact in cybersecurity while working with cutting-edge technologies.
- Qualifications: Experience in penetration testing and strong communication skills are essential.
The predicted salary is between 55000 - 90000 £ per year.
Location: Fully Remote, UK (with client site visits as required)
Salary: £55,000 - £90,000 DOE + expenses + overnight bonus for site work
Type: Permanent, Full-Time
Summary: We are looking for experienced Penetration Testers to join one of the UK's larger dedicated offensive security practices. With a team of around 70 testers split across CHECK and CREST work, this is a well-established consultancy delivering high-quality assessments across a broad client base, with genuine variety in engagement type, sector, and technical depth. The team is structured across two streams, more commercially-driven engagements through CREST, and deeper, security-led work through CHECK, so there’s a clear path whichever direction you want to lean. Multiple roles are available across mid and senior levels, and the company is flexible on starting clearance level.
Key Responsibilities:
- Deliver web application, API, and infrastructure penetration tests, taking ownership of engagements end-to-end from scoping through to final report delivery.
- Lead client-facing engagements, communicating high-risk findings as they are identified to support swift remediation.
- Produce clear, professional reports tailored to client-specific context and business risk.
- Support broader offensive security activities including red and purple team engagements, phishing simulations, and assumed-breach style assessments where relevant.
- Contribute to internal QA, mentor more junior consultants, and support report quality across the team.
- Stay up to date with the evolving threat landscape and contribute to internal R&D, tooling, and knowledge sharing.
Requirements:
- CHECK Team Member (CTM), CHECK Team Leader (CTL), CREST Registered Tester (CRT), or CREST Certified Tester (CCT) qualified, or actively progressing along either pathway at a senior level.
- Hands-on experience delivering web application, API, and/or infrastructure penetration tests in a professional consultancy setting.
- Strong understanding of common vulnerability classes (e.g. OWASP Top 10), exploitation techniques, and remediation guidance.
- Confident client-facing communication skills, with the ability to explain technical findings to both technical and non-technical audiences.
- Strong written reporting skills, with the ability to produce clear, well-structured deliverables.
- A genuine passion for offensive security, demonstrated through CTFs, labs (e.g. Hack The Box, TryHackMe), research, certifications, or community involvement.
Clearance: Clearance requirements vary by role, some do not require any clearance, others are looking for SC or DV. The company will put successful candidates through the relevant clearance process where required, so existing clearance is welcomed but not essential across the board.
Benefits:
- Salary: £55,000 - £90,000, depending on experience, certifications and clearance level
- Fully remote working
- Overnight bonus for client site visits
- Travel and expenses covered for client work
- Clearance sponsorship (SC / DV) where required for the role
- Company pension scheme
Penetration Tester (CHECK / CREST) in Yorkshire employer: Oscar Associates (UK) Limited
Contact Detail:
Oscar Associates (UK) Limited Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Penetration Tester (CHECK / CREST) in Yorkshire
✨Tip Number 1
Network like a pro! Reach out to your connections in the cybersecurity field, attend meetups, and join online forums. The more people you know, the better your chances of hearing about job openings before they even hit the market.
✨Tip Number 2
Show off your skills! Create a portfolio showcasing your penetration testing projects, CTF achievements, or any relevant research. This gives potential employers a taste of what you can do and sets you apart from the crowd.
✨Tip Number 3
Prepare for interviews by brushing up on your client-facing communication skills. Practice explaining complex technical concepts in simple terms. Remember, you’ll need to convey high-risk findings clearly to clients, so being articulate is key!
✨Tip Number 4
Don’t forget to apply through our website! We’ve got loads of opportunities waiting for talented Penetration Testers like you. Plus, it’s a great way to ensure your application gets the attention it deserves.
We think you need these skills to ace Penetration Tester (CHECK / CREST) in Yorkshire
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Penetration Tester role. Highlight your relevant experience, especially in web application and API testing, and don’t forget to mention any certifications like CHECK or CREST that you have.
Show Off Your Skills: In your written application, showcase your strong reporting skills. We want to see how you can produce clear and professional reports, so include examples of your previous work if possible!
Be Client-Focused: Since this role involves client-facing engagements, emphasise your communication skills. Explain how you've effectively communicated technical findings to both technical and non-technical audiences in the past.
Apply Through Our Website: We encourage you to apply through our website for a smoother process. It’s the best way for us to keep track of your application and ensure it gets the attention it deserves!
How to prepare for a job interview at Oscar Associates (UK) Limited
✨Know Your Stuff
Make sure you brush up on your technical skills, especially around web application and API penetration testing. Familiarise yourself with the OWASP Top 10 and be ready to discuss your hands-on experience in detail. This role demands a solid understanding of vulnerability classes and exploitation techniques, so be prepared to showcase your knowledge.
✨Tailor Your Communication
Since you'll be leading client-facing engagements, practice explaining complex technical findings in simple terms. Think about how you can convey high-risk issues clearly to both technical and non-technical audiences. This will demonstrate your ability to bridge the gap between tech and business, which is crucial for this role.
✨Show Your Passion
Bring examples of your passion for offensive security to the table. Whether it's through CTFs, labs like Hack The Box, or community involvement, share your experiences. This not only shows your commitment but also gives insight into your proactive approach to learning and staying updated with the evolving threat landscape.
✨Prepare Questions
Have a few thoughtful questions ready for your interviewers. Ask about the team structure, the types of projects they work on, or how they support professional development. This shows your genuine interest in the role and helps you assess if the company aligns with your career goals.