Future Tech Jobs Future Tech Jobs

Penetration Tester Jobs

Ethical hackers who simulate cyber attacks to identify vulnerabilities. A critical role in safeguarding digital assets and ensuring robust security.

Open roles
9
Salary range
£25k – £90k
Hiring companies
7
View 9 live roles Get an alert

Penetration testers, also known as ethical hackers, play a vital role in the cyber security landscape. They simulate real-world cyber attacks to identify and mitigate vulnerabilities in systems, networks, and applications. These professionals are hired by a range of organisations, from scaleups and research-heavy startups to larger consultancies, to ensure that digital defences are robust and resilient.

What the role does

Inside the role of a Penetration Tester

A typical week for a penetration tester is a mix of planning, execution, and reporting. They spend time researching attack vectors, conducting tests, and documenting findings.

  1. 01
    Conduct initial reconnaissance on target systems
  2. 02
    Execute simulated attacks to identify vulnerabilities
  3. 03
    Document findings and prepare detailed reports
  4. 04
    Collaborate with development teams to address identified issues
  5. 05
    Stay updated on the latest security threats and techniques
  6. 06
    Participate in debriefing sessions with clients or stakeholders
Salary on the board

£25k – £90k

Based on advertised midpoints across the 15 priced listings posted in the last 12 months. Base salary only.

By seniority
£k base
Entry
35
45
1 job
Junior
25
30
1 job
Mid
40
85
7 jobs
Senior
70
85
4 jobs
Lead
80
90
1 job
Skills & tools

What hiring managers ask for

% of 11 listings posted in the last 12 months that mention each skill, extracted from job descriptions.

Penetration Testing
91%
OSCP
45%
Burp Suite
45%
Web Application Security
36%
Nmap
36%
Nessus
36%
Metasploit
36%
Vulnerability Assessment
36%
Network Security
36%
Web Application Testing
27%
Cloud Security
27%
GDPR
27%
Career ladder

From Junior to Principal

A typical UK progression for penetration testers. Years are guidance — strong people move faster, and many senior folks sidestep into research, product or management.

  1. Level 1

    Junior Penetration Tester

    0–2 yrs

    Assists in planning and executing basic penetration tests under supervision. Focuses on learning and understanding security testing methodologies.

  2. Level 2

    Penetration Tester

    2–5 yrs

    Conducts comprehensive penetration tests independently. Owns the execution and reporting of test results, and provides recommendations for remediation.

  3. Level 3

    Senior Penetration Tester

    5–8 yrs

    Leads complex penetration testing projects. Mentors junior team members and collaborates with clients to develop and implement security strategies.

  4. Level 4

    Principal Penetration Tester

    8+ yrs

    Oversees the entire penetration testing function. Develops and standardises testing methodologies, and advises on high-level security policies and practices.

Pathway

How to become a Penetration Tester

There's no single route, but most people follow some version of these steps.

  1. 1

    Learn the Basics

    Start with foundational knowledge in networking, programming, and security principles. Gain hands-on experience through courses and certifications.

  2. 2

    Gain Practical Experience

    Work on real-world projects, either through internships or entry-level roles. Build a portfolio of penetration testing reports and case studies.

  3. 3

    Specialise in Tools and Techniques

    Develop expertise in specific tools and techniques used in penetration testing. Stay updated with the latest trends and threats in the cyber security landscape.

  4. 4

    Lead Projects and Teams

    Take on leadership roles, managing complex penetration testing projects and mentoring junior team members. Collaborate with clients to implement security solutions.

  5. 5

    Advise on Security Strategy

    Provide strategic advice on security policies and practices. Influence organisational decisions and contribute to the development of industry standards.

Live jobs

9 live roles

See all 9 roles
Bridewell logo

Penetration Tester

As a result of growth, we are looking for an experienced Penetration Tester with solid experience of infrastructure and web application testing to deliver testing engagements on a range of key client work.This is an excellent opportunity for a highly...

Bridewell London, United Kingdom
Remote Permanent

Penetration Tester

This role involves conducting infrastructure and web application penetration tests, delivering technical reports, and providing security recommendations to clients. You will work with a variety of technologies and collaborate with experienced cyber security specialists to deliver high-quality services.

Red Moon recruitment Cheltenham, Gloucestershire, United Kingdom £65,000 – £85,000 pa
Hybrid Permanent

Penetration Tester

This role involves conducting comprehensive penetration tests across networks, web and mobile applications, APIs, and cloud environments using both manual and automated techniques. The tester will simulate real-world cyberattacks, identify vulnerabilities, and produce detailed technical and executive reports with actionable remediation advice. A key focus is translating complex security findings for non-technical stakeholders while adhering to strict ethical and compliance standards in a security-cleared context.

SmartSourcing Ltd United Kingdom £60,000 – £80,000 pa
Remote Permanent Clearance Required

Penetration Tester

This role involves conducting comprehensive penetration tests across internal/external infrastructure, web applications, and networks, using industry-standard tools like Burp Suite, Metasploid, and Nmap. The candidate will produce detailed technical reports, support client engagements, and contribute to research and development in emerging security areas such as OT and threat-led testing. The position supports professional growth with certification opportunities and progression into advanced offensive security disciplines.

Big Red Recruitment Midlands Limited London, United Kingdom £45,000 – £55,000 pa
Hybrid Permanent Clearance Required

Penetration Tester

Conduct penetration tests across infrastructure, networks, and web applications for clients, identifying vulnerabilities and providing actionable remediation advice. Work with tools like Burp Suite, Metasploid, and Nmap while contributing to methodology improvements and research in emerging security areas such as OT and red teaming. Engage directly with clients and support the development of scalable testing capabilities within a growing offensive security team.

Big Red Recruitment Ec4A3Eb, EC4A 3EB, United Kingdom £45,000 – £55,000 pa
Hybrid Permanent Clearance Required

Penetration Tester (CTM)

Penetration Tester | CHECK Team Member | £50-55kWe're working with a growing UK cyber security consultancy delivering penetration testing services to government and public sector organisations.They're looking for a CHECK Team Member to join the team, delivering high-quality security assessments...

Oscar Technology Cheltenham, United Kingdom £50,000 – £55,000 pa
Bridewell logo

Senior Penetration Tester

This role involves conducting infrastructure and web application penetration tests for key clients. You will have access to a dedicated annual budget for personal development, including CREST and Cyber Scheme exams, and time to research and develop new testing methodologies.

Bridewell United Kingdom
Remote Permanent Clearance Required

Security Penetration Tester

As a Security Penetration Tester, you will be responsible for supporting the design, implementation, and maintenance of TVM (Threat & Vulnerability Management) solutions, controls and processes across the organisation. You will be liaising with Digital teams to ensure appropriate mitigation...

Pertemps Thames Water Reading, Berkshire, United Kingdom £78,000 pa
Hybrid Permanent Clearance Required
See all 9 roles
Hiring locations

Where this role is hiring

The locations with the most live listings for this role today.

London

Location
1 open

Reading

Location
1 open

Cheltenham

Location
1 open
FAQs

Common questions

  • A degree in computer science or a related field is beneficial, but practical experience and relevant certifications like CEH or OSCP are highly valued.

  • Participate in industry conferences, join professional groups, and follow leading security blogs and forums. Continuous learning is crucial in this field.

  • Salary ranges can vary widely based on experience and location. For more detailed information, refer to the salary section on this page.

  • Strong technical skills in networking and programming, a deep understanding of security principles, and the ability to think creatively and solve complex problems are essential.

Hiring penetration testers?

Post your role in 90 seconds and reach the specialist audience that already reads this page.

Post a job See pricing

🍪 Basic, anonymous analytics (aggregate counts only, never shared) are always on. Accept to also enable third-party tools — Google Analytics, Microsoft Clarity, Mixpanel, Leadfeeder — which help us match you with relevant Cyber Security roles. We never sell your data or use it for cross-site advertising. See our Cookie Policy.