Senior Penetration Tester

CHECK Senior Infrastructure Penetration Tester

PGI is a global consultancy that helps organisations build digital resilience. We deploy our people to implement solutions on behalf of clients or to support them in developing their capabilities.

Our Penetration Testers work with organisations of all sizes and types to detect and remediate vulnerabilities. They help identify areas lacking sufficient protection. The team tests the security of infrastructure and applications, conducts IT Health Checks, reviews IT configurations, identifies gaps that threat actors could exploit, and makes recommendations to safeguard assets.

What you'll be doing:

• Providing professional cybersecurity consultancy to internal and external stakeholders.
• Leading the delivery of PGI's infrastructure penetration testing.
• Collaborating on the design and delivery of new and existing service lines related to offensive security assessments.
• Supporting and often leading technical pre-sales, proposal writing, and client engagements.
• Coaching and supervising junior team members, including resource management, development planning, mentoring, and knowledge transfer.
• Analyzing security data to identify patterns, threats, and vulnerabilities.
• Producing high-quality technical reports that explain vulnerabilities in non-technical language for stakeholders.
• Performing quality assurance and peer reviews of project reports.
• Collaborating with colleagues on internal or client projects.
• Contributing to technical training and development materials.
• Supporting technical delivery projects to ensure successful outcomes.
• Mentoring security consultants or clients by sharing knowledge and overseeing skill development.
• Participating in exercises such as Capture The Flag (CTF) challenges.
• Providing accurate scoping of penetration testing opportunities for sales activities.
• Supporting sales activities with proposals and client presentations.
• Supporting marketing with subject matter expertise and content development.
• Developing and maintaining technical skills and certifications, e.g., Hack The Box.
• Staying current with cybersecurity trends, threats, and technologies.

On day one you will bring:

• Relevant professional certifications, such as CCT inf or CSTL inf.
• Chartership from the Cyber Security Council with the title Principal or Chartered (preferred).
• At least 3 years of experience in penetration testing or security consulting.
• Knowledge of operating systems, networks, and cloud platforms.
• A good understanding of network security and protocols like TCP/IP.
• Experience with technical concepts such as tunneling traffic and IP configuration.
• Experience delivering penetration tests and vulnerability assessments for networks, applications, and cloud services.
• Excellent communication skills, both verbal and written, with the ability to present to clients.
• Ability to manage time effectively and work to deadlines.
• Critical thinking skills and an innovative approach to problem-solving.
• Experience with security tools like Nessus, Burp Suite, and Metasploit.
• Ability to work independently and collaboratively, sharing knowledge freely.
• Knowledge of scripting languages.
• Eligibility for security clearance.
• Self-motivation and a commitment to continuous development.

Diversity, Equity, and Inclusion at PGI

As a British company operating internationally, we value the diversity of our team. We work across 80+ countries, with team members speaking 25+ languages and from various backgrounds. We believe that a diverse, equitable, and inclusive workforce enables us to deliver innovative solutions to complex problems.

Accessibility at PGI

We are committed to making reasonable adjustments to accommodate individual needs, removing barriers in the workplace. We aim to make our recruitment process accessible and encourage candidates with questions or concerns to contact us.

Please note: We are not accepting applications or profiles from recruitment agencies. Additional resources will be engaged directly by PGI if needed.