Penetration Tester

McCabe & Barton
Charing Cross, United Kingdom
3 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Junior

Job location

Charing Cross, United Kingdom

Tech stack

Microsoft Windows
Amazon Web Services (AWS)
Antivirus Softwares
Software System Penetration Testing
Azure
Bash
Cloud Computing
CompTIA Security+
Information Systems
Continuous Integration
Linux
DevOps
DNS
Github
Python
Powershell
Red Team (Cyber Security)
Security Information and Event Management
TCP/IP
Scripting (Bash/Python/Go/Ruby)
Firewalls (Computer Science)
Infrastructure as Code (IaC)
Kubernetes
Information Technology
Hashicorp
Bitbucket
Operational Systems
Ansible Tower
Blue Team (Cyber Security)
Programming Languages

Job description

  • Support penetration testing and offensive security activities, including red teaming, breach and attack simulation (BAS), and bug bounty engagements.
  • Assist with incident response and participate in the on-call rota for major incidents.
  • Contribute to red/blue team exercises, threat hunting, SIEM rule tuning, and detection engineering.
  • Help deploy, maintain, and automate security tooling (email security, DLP, SIEM, endpoint protection) using scripting and Infrastructure as Code (IaC).

Requirements

  • Up to 2 years of experience in IT, security engineering, or DevOps (internships or academic projects welcome).
  • Basic understanding of:
  • Ethical Hacking & Penetration Testing
  • Networking and security protocols (TCP/IP, HTTPS, DNS, Firewalls, Proxy)
  • Operating systems: Windows, Linux/Unix; Kubernetes desirable
  • Scripting or programming languages: Python, Bash, PowerShell
  • CI/CD tools and cloud platforms: e.g. Ansible Tower, Bitbucket, HashiCorp Vault, Pipelines, AWS, Azure
  • GitHub
  • Software Development Life Cycle (SDLC) principles
  • Security tooling: EDR, SIEM, Antivirus, + Desirable: University degree or equivalent qualification in a STEM subject (Computer Science, Engineering, or Information Systems).
  • Desirable: Entry-level security certifications such as CompTIA Security+, Microsoft SC-900, or AWS Cloud Practitioner.
  • Desirable: Demonstrated activity on TryHackMe, HackTheBox, or OSCP-related / Red Team training platforms (or equivalent).
  • Desirable: Evidence of contributions on GitHub, showing code samples, tool development, or participation in offensive security projects and repositories.

Personal Qualities *

  • Inquisitive, analytical, and detail-oriented with a genuine passion for security engineering and automation.
  • Strong communicator who thrives in a collaborative, fast-paced environment supporting critical infrastructure.

If you're keen to kickstart your career in penetration testing and threat analysis within a leading financial services environment, please apply with your CV.

Benefits & conditions

  • Permanent
  • Published: 5 days ago
  • Competitive Salary + Package

Apply for this position