Penetration Tester

Experienced Penetration Tester required to join a specialist cyber security team supporting NATO operations and critical defence infrastructure. This is an exciting opportunity to work in a highly secure environment, delivering offensive and defensive cyber security services while contributing to military exercises, security assurance activities, and accreditation processes.

The successful candidate will play a key role in identifying vulnerabilities, assessing risks, and strengthening the security posture of complex networks, systems, and applications across NATO environments.

Key Responsibilities

• Lead and participate in Red Team and Blue Team activities during NATO military exercises.
• Conduct web application, infrastructure, and application penetration testing across a range of environments.
• Perform security assessments and design reviews to ensure compliance with NATO security policies, standards, and directives.
• Provide expert security consultancy and technical guidance to projects, programmes, and operational teams.
• Identify security vulnerabilities within operating systems, applications, networks, and protocols, providing clear remediation recommendations.
• Support security accreditation activities and collaborate with key stakeholders throughout the accreditation life cycle.
• Build and maintain strong working relationships with internal and external stakeholders, including:
  • NCIA Configuration Control Board
  • Security Accreditation Boards
  • NATO Security Accreditation Authorities
  • NCI Agency organisational units

Skills & Experience Required

• Minimum 3 years' experience in penetration testing and cyber security.
• Strong experience in:
  • Web application penetration testing
  • Infrastructure and network penetration testing
  • Network security architecture and design
  • Vulnerability assessment across operating systems, software, protocols, and networks
• Experience researching and evaluating security technologies, tools, and products.
• Solid knowledge of UNIX/Linux and Windows system administration.
• Proficiency with industry-standard penetration testing tools, techniques, and methodologies.
• Scripting experience in at least one of the following:
  • Python
  • Perl
  • Ruby
  • Bash/Shell Scripting
• Strong understanding of:
  • Network and system security
  • Authentication and security protocols
  • Cryptography
  • Application security
  • Malware techniques and defensive technologies
• Ability to assess risk, communicate findings effectively, and develop practical mitigation strategies.

What's on Offer

• Opportunity to work on high-profile NATO and defence-related cyber security programmes.
• Exposure to advanced Red Team and Blue Team operations.
• Collaborative international environment with leading cyber security professionals.
• Long-term project opportunities within a secure and mission-critical setting.

Please note: Candidates must hold NATO Secret clearance or UK Security Check (SC) clearance to be considered for this position. You must also be fluent in English.