Careers

Graduate Security Consultant

Job type: Full time
Location: Leeds office five days per week

Pentest People are looking for enthusiastic cyber security or computer science graduates to join us as trainee security consultants at our award winning and fast-growing consultancy, based in Leeds. 

Pentest People cover a wide range of assessment services from applications (web, mobile, API), infrastructure, social engineering (phishing, vishing, physical intrusion) and cloud testing. We offer trainee consultants the opportunity to develop their skills over many of these areas. 

The Training Programme

The graduate training programme lasts for up to twelve months and consists of four structured units:

1. An Introduction to Becoming a Consultant - Trainees learn and practise key skills and begin to conduct live assessments.
2. Broadening Testing Skills - Each month, a new type of test is learned and practised.
3. Becoming a Consultant - An opportunity to gain deeper and broader experience whilst also assisting with the development of new trainees.
4. Specialisation Project - a chance to pursue something you are passionate about and become an expert.

Responsibilities:
Performing penetration tests

Writing high quality reports

Client interaction

Collaborating with colleagues

Commitment to learning

Cultural & work environment

You will be 100% office based in our modern Leeds city centre office. Your diary will be varied as you work with a small group of other trainees (typically 4 or 5) to learn the different aspects of becoming a security consultant. Using a range of learning techniques including: workshops, observations, practice labs, paired work, live testing, discussion, mentoring, coaching and independent research; you will rapidly develop a range of technical and soft skills. You will be offered support from the academy team leader and all of our consultants so that you make constant progress in a supportive and friendly environment. 

How to apply

Please send your CV to careers@pentestpeople.com

Don’t work in technology but want to change careers?

We are willing to consider applicants with no previous technology experience for this entry-level role. However, these candidates are expected to be able to demonstrate a high aptitude or knowledge in either infrastructure or application technologies and a desire to learn.

‍

Job type: Full time
Location: Leeds offices

Description:

Pentest People are looking for enthusiastic security consultants to join our fast-growing consultancy, based in Leeds. A typical day in the life of a security consultant would involve testing applications/infrastructures and assisting sales with scoping and writing reports. We are looking to speak to security consultants, cybersecurity graduates or those with relevant work experience.

Pentest People cover a wide range of services from applications (web, mobile, API), infrastructure, social engineering (phishing, vishing, physical intrusion) and cloud testing. We offer consultants the opportunity to test over all areas but typically specialise in one.
Bonus points for bringing vulnerable applications or virtual machines that you have created yourself to the interview! Be creative, show us something that you are interested in...
It should be noted that an excellent level of written English is absolutely essential for this role.

Responsibilities:
Performing Penetration Tests

Writing High Quality Reports

Scoping Work

Client Interaction

Cultural & work environment

Your diary will be constantly changing in a high paced work environment. In non-covid times, infrastructure testers are likely to be travelling regularly around the UK and sometimes abroad. Some travel is also required for application specialists. You will be offered support from all consultants, and you will be expected to do the same once you have experience.
Love talking about the latest vulnerabilities, showing off new tools that you have created, and an endless supply of memes? You will fit in well at Pentest People.

Profiles:

Already work in security? This is what we expect your profile to look like.
Experience in one, or both of the following areas:

Application Testing

Fluent with burp suite professional

An understanding of core networking protocols (TCP/IP, UDP, SSH, FTP etc.)

Confident with creating basic CRUD (create, read, update, delete) style applications using HTML, CSS, Javascript and any preferred backend language.

Ability or willingness to learn scripting in one or more of the following languages: Ruby,Python, Go
Excellent written skills

CTM/CTL desirable

Infrastructure Testing

Proven experience with Windows/Linux Operating systems and applications

Experience with specific testing tools such as nmap/metasploit/kali linux suite of tools etc

Understanding of networking including subnets

Willingness to learn enumeration and exploitation techniques as part of a network security assessment

Excellent written skills

CTM/CTL desirable

Currently, work in technology but no experience penetrating testing? This is a non-exhaustive list of profiles that we look for.

You are still expected to have good working knowledge of security practice and principles in your specialist area.

Application Testing

Web Developers

Software Developers

DBA

Infrastructure Testing

Sys Admins

Infrastructure Engineers

Security Analysts

Don’t work in technology but want to change careers?

We are willing to consider applicants with no previous technology experience or entry-level roles. These candidates are expected to be able to demonstrate a high aptitude of knowledge in either infrastructure or application technologies and a desire to learn. OSCP is one way to achieve this.