Penetration Tester - Salisbury
<p><b>Salary: £30,000 - 60,000 per year</b></p>
<b>Requirements:</b>
<ul><li>4 years' experience in infrastructure penetration testing</li><li>Deep understanding of Active Directory (AD) based attacks, lateral movement, and privilege escalation</li><li>Comfort operating in production environments with limited runbooks or documentation</li><li>Strong Windows and Linux command-line skills</li><li>Ability to work with legacy systems and navigate environments with technical debt</li><li>Desirable skills & qualifications:</li><li>Python scripting or coding skills (advantageous)</li><li>Exposure to operational technology (OT) networks and internal infrastructure tooling</li><li>Relevant certifications such as CREST (CTM, CTL, CSTM), Cyber Scheme Practitioner, or OSCP</li></ul>
<b>Responsibilities:</b>
<ul><li>Deliver internal infrastructure penetration tests, with an emphasis on Active Directory environments</li><li>Act as a trusted advisor to clients in a hands-on consulting role</li><li>Document clear and concise technical reports for both technical and non-technical stakeholders</li><li>Operate independently in sensitive and sometimes live production environments</li><li>Contribute to the development of tools, methodology, and internal process improvements</li><li>Demonstrate initiative in building and adapting testing approaches to fit client environments</li></ul>
<b>Technologies:</b>
<ul><li>Active Directory</li><li>Linux</li><li>Python</li><li>Security</li><li>Windows</li><li>Web</li></ul>
<p><b>More:</b></p>
<p>We are a global innovation and transformation consultancy seeking to grow our elite Digital & Data team. As a Penetration Tester, you will be involved in high-stakes client environments, including defence, critical infrastructure, and national security. This role requires confidence in navigating sensitive networks and the ability to consult directly with clients, delivering clear, actionable insights. <br><br>We offer a flexible hybrid working model, with approximately two days per week spent in client or office locations, while the majority of the work can be conducted remotely. Our primary base is preferred in London, although other UK locations will be considered based on flexibility. <br><br>We value a tight-knit, high-performing team environment and are committed to providing competitive salaries and packages, including bonuses, pensions, and private healthcare. To be eligible for this role, candidates must be SC clearable, and current SC clearance is highly desirable.<br><br>If this sounds like your kind of challenge, we encourage you to reach out today. Don't worry if you don’t think you’re the perfect fit; we are hiring across the security space and would love to discuss options with you.</p>
<p>last updated 8 week of 2026</p>
<b>Requirements:</b>
<ul><li>4 years' experience in infrastructure penetration testing</li><li>Deep understanding of Active Directory (AD) based attacks, lateral movement, and privilege escalation</li><li>Comfort operating in production environments with limited runbooks or documentation</li><li>Strong Windows and Linux command-line skills</li><li>Ability to work with legacy systems and navigate environments with technical debt</li><li>Desirable skills & qualifications:</li><li>Python scripting or coding skills (advantageous)</li><li>Exposure to operational technology (OT) networks and internal infrastructure tooling</li><li>Relevant certifications such as CREST (CTM, CTL, CSTM), Cyber Scheme Practitioner, or OSCP</li></ul>
<b>Responsibilities:</b>
<ul><li>Deliver internal infrastructure penetration tests, with an emphasis on Active Directory environments</li><li>Act as a trusted advisor to clients in a hands-on consulting role</li><li>Document clear and concise technical reports for both technical and non-technical stakeholders</li><li>Operate independently in sensitive and sometimes live production environments</li><li>Contribute to the development of tools, methodology, and internal process improvements</li><li>Demonstrate initiative in building and adapting testing approaches to fit client environments</li></ul>
<b>Technologies:</b>
<ul><li>Active Directory</li><li>Linux</li><li>Python</li><li>Security</li><li>Windows</li><li>Web</li></ul>
<p><b>More:</b></p>
<p>We are a global innovation and transformation consultancy seeking to grow our elite Digital & Data team. As a Penetration Tester, you will be involved in high-stakes client environments, including defence, critical infrastructure, and national security. This role requires confidence in navigating sensitive networks and the ability to consult directly with clients, delivering clear, actionable insights. <br><br>We offer a flexible hybrid working model, with approximately two days per week spent in client or office locations, while the majority of the work can be conducted remotely. Our primary base is preferred in London, although other UK locations will be considered based on flexibility. <br><br>We value a tight-knit, high-performing team environment and are committed to providing competitive salaries and packages, including bonuses, pensions, and private healthcare. To be eligible for this role, candidates must be SC clearable, and current SC clearance is highly desirable.<br><br>If this sounds like your kind of challenge, we encourage you to reach out today. Don't worry if you don’t think you’re the perfect fit; we are hiring across the security space and would love to discuss options with you.</p>
<p>last updated 8 week of 2026</p>