At a Glance
- Tasks: Lead hands-on penetration testing across web apps, APIs, and cloud environments.
- Company: Join a growing security consultancy with a focus on quality and collaboration.
- Benefits: Competitive salary, flexible work options, and opportunities for professional growth.
- Other info: Dynamic team environment with opportunities to mentor and innovate.
- Why this job: Make a real impact by helping organisations reduce security risks.
- Qualifications: Experience in penetration testing and strong communication skills required.
The predicted salary is between 50000 - 70000 £ per year.
About the Role
Great role for an experienced Senior Penetration Tester to join a growing security consultancy and play a key role in delivering high‑quality, security testing across a wide range of environments.
This role is suited to someone who enjoys being hands‑on, is comfortable leading engagements end‑to‑end and takes pride in producing clear, defensible findings that help organisations reduce real security risk. You will work closely with technical teams and stakeholders to test applications and infrastructure, explain risk in practical terms, and support effective remediation.
What You’ll Be Doing
- Plan, scope, and deliver manual penetration testing engagements across web applications, APIs, infrastructure and cloud environments.
- Lead testing activities from initial scoping through execution, reporting and client or stakeholder read‑outs.
- Identify, validate and exploit security weaknesses using a combination of tooling and manual techniques.
- Clearly document findings, impact and remediation guidance in high‑quality technical and non‑technical reports.
- Communicate risk effectively to a range of audiences, including engineers, product owners and non‑technical stakeholders.
- Support remediation efforts by working collaboratively with development, infrastructure and security teams.
- Contribute to internal quality assurance, peer review and continuous improvement of testing methodologies.
- Share knowledge within the team through mentoring, tooling contributions and technical discussions.
- Maintain awareness of emerging attack techniques, vulnerabilities and defensive controls relevant to modern environments.
What you’ll need
- Hands‑on penetration testing experience, delivering tests across multiple environments.
- Strong understanding of web application and infrastructure security, including common attack vectors and misconfigurations.
- Confidence using industry‑standard tools such as Burp Suite, Nmap, Metasploit, and similar assessment tooling.
- Ability to perform manual testing beyond automated findings, including business logic flaws and chained vulnerabilities.
- Strong communication skills and confidence discussing security risk with non‑technical audiences.
- A methodical, ethical approach to testing and handling sensitive information.
Desirable but not essential
- Experience testing mobile applications, cloud‑native architectures, or containerised environments.
- Scripting or programming experience (e.g. Python, Bash, PowerShell) to support testing or automation.
- Involvement in internal research, tooling development, or methodology improvement.
- Relevant industry certifications such as OSCP, CREST CRT, or equivalent.
- Experience supporting compliance‑driven testing (e.g. Cyber Essentials Plus or similar).
Interested? Apply now for more information!
Penetration Tester in Surrey employer: The Engage Partnership Recruitment
Join a dynamic and innovative security consultancy that values hands-on expertise and fosters a collaborative work culture. As a Senior Penetration Tester, you will not only engage in challenging projects but also benefit from continuous professional development opportunities, mentorship, and a supportive environment that encourages knowledge sharing. Located in a vibrant area, the company offers a unique chance to make a meaningful impact while enjoying a balanced work-life experience.
Contact Details:
The Engage Partnership Recruitment Recruitment Team
StudySmarter Expert Advice🤫
We think this is how you could land Penetration Tester in Surrey
✨Tip Number 1
Network like a pro! Get out there and connect with folks in the industry. Attend meetups, webinars, or even local tech events. You never know who might have the inside scoop on job openings or can refer you directly to hiring managers.
✨Tip Number 2
Show off your skills! Create a portfolio showcasing your penetration testing projects. Whether it's a blog, GitHub repo, or a personal website, having tangible evidence of your expertise can really set you apart from the crowd.
✨Tip Number 3
Prepare for interviews by practising common questions and scenarios related to penetration testing. Be ready to discuss your past experiences and how you've tackled security challenges. Confidence is key, so rehearse until you feel comfortable!
✨Tip Number 4
Don’t forget to apply through our website! We’ve got some fantastic opportunities waiting for you. Plus, applying directly can sometimes give you a better chance of getting noticed by our hiring team.
We think you need these skills to ace Penetration Tester in Surrey
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Penetration Tester role. Highlight your hands-on experience and any relevant tools you've used, like Burp Suite or Metasploit. We want to see how your skills match what we're looking for!
Showcase Your Projects:Include specific examples of past penetration testing engagements you've led. Describe the scope, your approach, and the outcomes. This helps us understand your practical experience and how you communicate findings.
Be Clear and Concise:When writing your application, keep it clear and to the point. Use straightforward language to explain your experience and how you handle security risks. We appreciate clarity, especially when discussing technical details!
Apply Through Our Website:Don’t forget to apply through our website! It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, we love seeing applications come directly from interested candidates!
How to prepare for a job interview at The Engage Partnership Recruitment
✨Know Your Tools Inside Out
Make sure you're well-versed in the industry-standard tools like Burp Suite, Nmap, and Metasploit. Be ready to discuss how you've used these tools in past engagements and any unique techniques you've developed.
✨Communicate Clearly
Since you'll be explaining risks to both technical and non-technical audiences, practice articulating complex security concepts in simple terms. Prepare examples of how you've successfully communicated findings in previous roles.
✨Showcase Your Hands-On Experience
Be prepared to discuss specific penetration testing projects you've led. Highlight your approach to scoping, executing, and reporting on tests, and be ready to share any challenges you faced and how you overcame them.
✨Stay Updated on Trends
Demonstrate your awareness of emerging attack techniques and vulnerabilities. Bring up recent news or trends in cybersecurity during the interview to show that you're engaged with the field and committed to continuous learning.
