Penetration Tester – CREST CRT Certified
Location:
Remote, UK
Job Type:
Full-time/Permanent
Reporting to:
Software Engineering Manager (QA Automation)
Find out more about the daily tasks, overall responsibilities, and required experience for this opportunity by scrolling down now.
Join TLScontact – Secure the Future of Global Visa & Immigration Services!
At
TLScontact , we specialize in delivering seamless and secure visa and immigration solutions for governments and travelers worldwide. Security is at the heart of our digital transformation, and we are looking for a
Security Testing Engineer (Pentester)
to help safeguard our platforms and applications.
If you are passionate about penetration testing, vulnerability analysis, and secure development, this role is perfect for you! You will work closely with our software engineering teams to
identify security risks, implement best practices, and enhance the security posture of our digital services.
Your Mission
Perform offensive security testing
(penetration testing) on web applications and services.
Conduct
manual and automated code analysis
to detect vulnerabilities and non-trivial security issues.
Support technical teams
in resolving vulnerabilities and strengthening security measures.
Develop and maintain
security testing methodologies
aligned with
OWASP, NIST, and CIS Controls .
Integrate security testing into the CI/CD pipeline
to detect and fix vulnerabilities early.
Ensure compliance with
industry security regulations
(PCI DSS, GDPR, HIPAA, SOC 2).
Use
PTES, MITRE ATT&CK, and CVSS scoring
for standardized security assessments.
Collaborate with developers and QA teams to build
comprehensive security test strategies .
Provide
detailed security reports , analyze trends, and propose continuous improvements.
What You Bring to TLScontact
Demonstrable experience in
penetration testing and security testing .
Hands-on expertise with
security tools
(Burp Suite, OWASP ZAP) and
scripting languages
(Python, Bash, PowerShell, Metasploit, Checkmarx).
Experience with
CI/CD tools
(GitLab, Jenkins, GitHub Actions).
Deep understanding of
secure software development lifecycle (SDLC) .
Strong
problem-solving skills
with high attention to detail.
Excellent communication skills
to collaborate with technical and non-technical teams.
English fluency (B2 level or higher) .
CREST Registered certification required .
Why TLScontact?
Global Impact
– Work on security solutions that protect sensitive visa and immigration data.
Innovative Environment
– Be part of a tech-driven organization committed to security and excellence.
Career Growth
– Access ongoing learning opportunities, certifications, and professional development.
Collaborative Culture
– Join a diverse and skilled team that values knowledge-sharing and teamwork.
Competitive Package
– Enjoy an attractive salary and benefits package.
Ready to make an impact in global security?
Apply now and help TLScontact shape a secure digital future!
At TLScontact, we are proud to foster an inclusive work environment where diversity is celebrated and valued. We are committed to equal employment opportunities and pay parity, regardless of factors like race, religion, gender, or disability.
Please note that all successful applicants will be required to undergo an enhanced level
Criminal Record disclosure.
Please note TLScontact is unable to sponsor those without permission to work in the UK, therefore any applicant must already have permission to work in the UK.
Under The Immigration, Asylum and Nationality Act 2006, you must have the right to
work in the United Kingdom to be considered for this role.
Please find below our Privacy Notice for Recruits:
https://www.tlscontact.com/recruit-privacy-notice/
